?
Solved

sa role

Posted on 2009-05-15
3
Medium Priority
?
470 Views
Last Modified: 2012-05-07
I am setting up security on a new SQL Server. In the Server Role I do not want anyone to have any permissions. However, I find that the default is the public role and that allows for Connect sa permission. Can some  please explain this to me. I know that sa is sequel authentication, but how does that effect server role security. In other words when I choose properties on one of the user logins they (by default) get sa connection as a server role. What does this mean?
Thanks
0
Comment
Question by:SeTech
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 13

Expert Comment

by:St3veMax
ID: 24398871
'sa' is system administrator, a bit like Domain Admins in AD. It has control over everything.

You would NOT use this account for users to connect to, but you would create a new account (either Windows auth or SQL auth) and grant the permissions there.

HTH
0
 

Author Comment

by:SeTech
ID: 24399178
To be clear. i am looking in the Servers Role folder under Security in SSMS. In there are various roles, one of which is publc. Then when I check the properties of that role (public) it shows permission connect and grantor - sa. And that is the system administrator? And if yes I should change it to Deny. Because when I look into the properties of a login the default is public.
0
 
LVL 13

Accepted Solution

by:
St3veMax earned 1500 total points
ID: 24399271
By default every account is made a member of the public role. If you change that to deny; should you need to connect with SA to correct some issue that's gone horribly wrong; you wont be able to.

I would leave those permissions alone as you dont really need to worry about those unless you give our the sa username and password for folks to connect with which I strongly advise against.

HTH
0

Featured Post

Get real performance insights from real users

Key features:
- Total Pages Views and Load times
- Top Pages Viewed and Load Times
- Real Time Site Page Build Performance
- Users’ Browser and Platform Performance
- Geographic User Breakdown
- And more

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When writing XML code a very difficult part is when we like to remove all the elements or attributes from the XML that have no data. I would like to share a set of recursive MSSQL stored procedures that I have made to remove those elements from …
So every once in a while at work I am asked to export data from one table and insert it into another on a different server.  I hate doing this.  There's so many different tables and data types.  Some column data needs quoted and some doesn't.  What …
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Do you want to know how to make a graph with Microsoft Access? First, create a query with the data for the chart. Then make a blank form and add a chart control. This video also shows how to change what data is displayed on the graph as well as form…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question