Link to home
Start Free TrialLog in
Avatar of QPR
QPRFlag for New Zealand

asked on

New admin account to run sql services

I've installed a new instance of sql 2005, I've read an article on using a local admin account but locking it down but I'm not sure how. I have created a new local user (Vista) and made it a member of administrators group. Using the sql config I have set the account to run the db/agent services to this new account.
2 questions...
How do I secure this admin acount to do what it needs to do (start service, folder access, send db mail etc) but not have other windows type admin?
Also when I tried to change the account for reporting services service I couldn't proceed without adding a password and location for a key... huh?
Avatar of imran_fast
imran_fast

Avatar of QPR

ASKER

Thanks but that seems to only tell me what will/won't work under different scenarios.
I was looking for some kind of security checklist, or similar, that would allow me to bolt down this Windows admin account that does nothing outside of sql.
ASKER CERTIFIED SOLUTION
Avatar of imran_fast
imran_fast

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of QPR

ASKER

Thanks, I've done the sql side of things but wasn't sure about the Windows side.
This is my stand alone laptop not using AD or G.Pol - was more for my own learning. I'll check out the link thanks.