Suggest a security model | SQL Server Performance Forums

SQL Server Performance Forum – Threads Archive

Suggest a security model

I want to suggest a security model and change our current logins. For example, (1) I need a domain ID only use for SQL Server service and the DTS packages (and/or for wherever that needs access to both SQL box and file server). (2) I need a Windows local ID for access to the box (Should this access be read only?)… I want to know how you suggest to implement the security on mine. I have two file servers and one SQL box. CanadaDBA
you have to assign appropriate role / add local windows id to be a member proper role,access privillage to database .
Hemantgiri S. Goswami
[email protected]
"Humans don’t have Caliber to PASS TIME , Time it self Pass or Fail Humans" – by Hemant Goswami

Your best bet will be using Windows Authentication with the help of fixed db or defined roles on the database. Satya SKJ
Moderator
http://www.SQL-Server-Performance.Com/forum
This posting is provided “AS IS” with no rights for the sake of knowledge sharing.
Thank you for the postings! In fact the problem is that I use same userid to RDC to the server that starts the SQL service or logins to the File Servers. Once, the userid was locked by the domain and a DTS failed because it was not able to access to the File server. So, it came to my mine that create another user id only for RDC to server. And create a seperate user id for DTS packages, and so on… Imagin a site with 1 SQL box and 1 File server, 2 databases and some DTS packages. What is the suggestion for user ids for this site?
thanks, CanadaDBA
If the same userid is given the permission to tackle the SQL services then imagine it is nothing but giving the key to whole house. If this user has sysadmin privileges then it is no hard to access those DTS packages. Satya SKJ
Moderator
http://www.SQL-Server-Performance.Com/forum
This posting is provided “AS IS” with no rights for the sake of knowledge sharing.
]]>