| Author |
Topic |
|
gr_sqlserver2005
Starting Member
7 Posts |
 Posted - 2008-10-13 : 05:07:28
|
| hi, i ve started to use sqlserver2005(with xp) and now on i ve a problem :((i added a group name "tester" and its member is "abc" which has limited account on xp and i ve added a new login name "tester" and i ve selected a database that will use(user mapping). database role membership is public.nothing selected in server roles.then, i logged in to xp with "abc" limited user and i started SSMS. normally system should denied to "abc" user to explore the master,tempdb or msdb databases right???? but only the model db can not be explored....what's wrong?? in the mean time when i explore the security >> logins i ve seen not only the "tester" but also the "sa" user.(i could not delete) please someone help me......... |
|
|
sodeep
Master Smack Fu Yak Hacker
7174 Posts |
Posted - 2008-10-13 : 08:48:57
|
| If they are in public role,they can explore system db but why are trying to delete sa? Those administrative accounts comes while installing. |
 |
|
|
gr_sqlserver2005
Starting Member
7 Posts |
Posted - 2008-10-13 : 11:22:44
|
| yes "tester" user (tied to "abc" limited account on xp) in public role in SSMS but "model" can not be seen.what's the difference?? what should i do to provide to just explore their its own database?? or how could i avoid being public??? in the mean time, when i logged in with limited account name "abc". in security >> logins>> "sa" account can be seen, is it true??? |
|
|
|
sodeep
Master Smack Fu Yak Hacker
7174 Posts |
Posted - 2008-10-13 : 13:45:31
|
| In order for Mixed Mode authentication, you have to provide sa login and password ,otherwise you can't create SQL login. |
|
|
|
gr_sqlserver2005
Starting Member
7 Posts |
Posted - 2008-10-13 : 16:01:15
|
| ok. what should i do to provide "abc" user to just explore its own database?? you said "if it is public role.." ok.what should i do to avoid being public not to explore system dbs??? (in the mean time thanks for your replies..) |
|
|
|
sodeep
Master Smack Fu Yak Hacker
7174 Posts |
Posted - 2008-10-13 : 16:41:57
|
quote:
Originally posted by gr_sqlserver2005
ok. what should i do to provide "abc" user to just explore its own database?? you said "if it is public role.." ok.what should i do to avoid being public not to explore system dbs??? (in the mean time thanks for your replies..)
Well you can give DataDenyreader for all system dbs except Master but you can't avoid user for Master database. |
|
|
|
gr_sqlserver2005
Starting Member
7 Posts |
Posted - 2008-10-15 : 08:58:45
|
| u mean that whatever we do in admin xp mode and in SSMS, limited user can explore master db???? m i right??? but can limited user delete any files from master db while he/she can explore them???? |
|
|
|
sodeep
Master Smack Fu Yak Hacker
7174 Posts |
Posted - 2008-10-15 : 10:15:42
|
quote:
Originally posted by gr_sqlserver2005
u mean that whatever we do in admin xp mode and in SSMS, limited user can explore master db???? m i right??? but can limited user delete any files from master db while he/she can explore them????
Can't delete anything from Master DB. |
|
|
|
gr_sqlserver2005
Starting Member
7 Posts |
Posted - 2008-10-15 : 15:21:12
|
| but whatever we do in admin xp mode and in SSMS, limited users can explore master db???? that's the result right?? |
|
|
|
sodeep
Master Smack Fu Yak Hacker
7174 Posts |
Posted - 2008-10-15 : 16:26:10
|
| Yes. |
|
|
|
gr_sqlserver2005
Starting Member
7 Posts |
Posted - 2008-10-16 : 04:43:25
|
| thanks a lot for ur support |
|
|
|
|
help.....limited xp account can explore master db?