Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


How security is set on drives of Windows 2003 Server to let only specific  SQL Server acces to them?

Posted on 2009-12-16
Medium Priority
Last Modified: 2012-05-08
How security is set on drives of Windows Server 2003 to let only specific  SQL Server acces to them?

For exemple:

- Windows 2003A, has SQL Server 2005 installed and has those drives: C, D, E,F
- Windows 2003B, has also SQL server 2005 installed and SQL Management Studio

Let's say:

1- I open SQL Management Studio on Windows 2003B and connect on SQL databases of  Windows 2003A

2- When I try to restore a database from file, I can only acces to E and F drives of Windows 2003A

How security is set to get only acces to specific drives?
Question by:SAM2009

Expert Comment

ID: 26069495
Use windows users with specific rights and priviledges on SQL server.
i.e.  Grant connect on SQL server installed on  Windows 2003B and  Windows 2003A
And Grant db_backupoperator SQL server installed on Windows 2003A and file permissions on E and F drives of Windows 2003A.


Expert Comment

ID: 26070180
Do you use a windows domain account or a local account?
On your SQL Servers, is it SQL Server authentication or Mixed mode authentication?

The thing is if you want to restore database file which are located on Windows 2003A,whateever the drive is, you must share the folder containing your restore files; and the user you are using to connect to Windows 2003A should have access to both Windows 2003A and Windows 2003B.

Any of your windows drive is protected by NTFS permissions until you share it ! Default permissions are set to let LOCAL MACHINE Users to acces the drives, meaning that if you are on Windows 2003A, all users(who are administrators of course) can access all drives. But by changing any of those NTFS permissions, you can add/remove a users, and therefore all/deny him the access to a drive.

Then when you share a drive, you set SHARE PERMISSIONS which are different from NTFS Permissions. Share Permissions allow you to tell WHO on your NETWORK can See, Read or Write you shared folder. NTFS permissions defines who can ACCESS your shared folder.

e.g: If you set permissions of User A to Write in your shared folder, and then on the NTFS permissions you deny him, he will see the folder but won't be able to Write into it !

Hope this answered your question.

Accepted Solution

SAM2009 earned 0 total points
ID: 26077213
Ya I already checked NTFS security...by searching I realized that SQL servers are set in cluster mode..so the drives are shared by the ressources in windows cluster manager... I forgot that.

 Thanks anyway for your help.

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Scenerio: You have a server running Server 2003 and have applied a retail pack of Terminal Server Licenses.  You want to change servers or your server has crashed and you need to reapply the Terminal Server Licenses. When you enter the 16-digit lic…
In this article I will describe the Copy Database Wizard method as one possible migration process and I will add the extra tasks needed for an upgrade when and where is applied so it will cover all.
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Kernel Data Recovery is a renowned Data Recovery solution provider which offers wide range of softwares for both enterprise and home users with its cost-effective solutions. Let's have a quick overview of the journey and data recovery tools range he…

571 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question