Re: Regarding SQL Server Login
- From: Erland Sommarskog <esquel@xxxxxxxxxxxxx>
- Date: Sat, 06 Sep 2008 03:01:14 -0700
James Simpson (JamesSimpson@xxxxxxxxxxxxxxxxxxxxxxxxx) writes:
It would be for the entire server (the instance of the server) not just
the database for obvious reasons. How do I specify deny every
conceiveable type of group and leave only the sa to be able to login?
DROP LOGIN [BUILTIN\Administrators]
After this, SELECT * FROM sys.server_principals should return 18 rows.
The other 17 beside sa are fixed server roles, certificates and some
predefined logins/groups that I would not recommend that you drop, as
I have no idea of what could break if you do.
Then again, I am not sure that I see the point of permitting no one but
sa to access the server.
Erland Sommarskog, SQL Server MVP, esquel@xxxxxxxxxxxxx
Links for SQL Server Books Online:
SQL 2008: http://msdn.microsoft.com/en-us/sqlserver/cc514207.aspx
SQL 2005: http://msdn.microsoft.com/en-us/sqlserver/bb895970.aspx
SQL 2000: http://www.microsoft.com/sql/prodinfo/previousversions/books.mspx
- Prev by Date: RE: SSL on SQL Server
- Next by Date: Re: Error 15401 - Windows NT user or group 'tropicaldba\SQLAccessG
- Previous by thread: Re: Regarding SQL Server Login
- Next by thread: RE: SSL on SQL Server