Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 425
  • Last Modified:

Are there any security risks adding user to MSDB database and giving them permissions to execute agent jobs?

Are there any security risks adding user to MSDB database and giving them permissions to execute agent jobs?
0
Mr_Shaw
Asked:
Mr_Shaw
  • 4
  • 4
1 Solution
 
EvilPostItCommented:
Assign your user the SQLAgentUserRole role in MSDB the will then be able to start and stop jobs
that are owned by his login. This will ensure that they cannot execute anything but jobs that are owned by them which would circumvent security issues.
0
 
Mr_ShawAuthor Commented:
That works really well....

From a dba perspective do you think they would be happy with this setup?
0
 
EvilPostItCommented:
Im a DBA so yes.
0
Learn Veeam advantages over legacy backup

Every day, more and more legacy backup customers switch to Veeam. Technologies designed for the client-server era cannot restore any IT service running in the hybrid cloud within seconds. Learn top Veeam advantages over legacy backup and get Veeam for the price of your renewal

 
EvilPostItCommented:
Sorry that sounded quite blunt. Appologies for that.
0
 
Mr_ShawAuthor Commented:
no problem... i'm just am SQL idot!!!
0
 
Mr_ShawAuthor Commented:
thanks
0
 
Mr_ShawAuthor Commented:
I just read on http://msdn.microsoft.com/en-us/library/ms188283.aspx

The SQLAgentReaderRole and the SQLAgentOperatorRole are automatically members of the SQLAgentUserRole.

Should I deny permission on SQLAgentReaderRole and the SQLAgentOperatorRole as well?
0
 
EvilPostItCommented:
See what the DBA's say. If they arent bothered about then dont worry.
0

Featured Post

Get free NFR key for Veeam Availability Suite 9.5

Veeam is happy to provide a free NFR license (1 year, 2 sockets) to all certified IT Pros. The license allows for the non-production use of Veeam Availability Suite v9.5 in your home lab, without any feature limitations. It works for both VMware and Hyper-V environments

  • 4
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now