Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
funketekun
Constraint Violating Yak Guru
491 Posts |
 Posted - 2007-06-13 : 08:50:17
|
| After installing 2005 I have these 5 logins. Do I need them or should i wipe them out? What are they?YPGA-SQL2005-DEV\SQLServer2005MSFTEUser$IPG-SQL2005-DEV$MSSQLSERVERYPGA-SQL2005-DEV\SQLServer2005MSSQLUser$IPG-SQL2005-DEV$MSSQLSERVERYPGA-SQL2005-DEV\SQLServer2005SQLAgentUser$IPG-SQL2005-DEV$MSSQLSERVERBUILTIN\AdministratorsNT AUTHORITY\SYSTEM=============================http://www.sqlserverstudy.com |
|
|
nr
SQLTeam MVY
12543 Posts |
Posted - 2007-06-13 : 10:25:25
|
| BUILTIN\Administratorsis the group which gives local administrators (and domain admins?) sa access.Some people recomend removing it (can cause problems if you do) but my view is that admins should be trusted and can always screw up your system in other ways if they want to.NT AUTHORITY\SYSTEMHas high rights on the server but limited domain access and is used by quite a lot of things by default. It should be safe to get rid of it if you are using domain accounts for everything.all services.==========================================Cursors are useful if you don't know sql.DTS can be used in a similar way.Beer is not cold and it isn't fizzy. |
 |
|
|
rmiao
Master Smack Fu Yak Hacker
7266 Posts |
Posted - 2007-06-13 : 10:35:16
|
| We always remove BUILTIN\Administrators from sysadmin role since domain or local windows admin doesn't manage sql server, but should leave NT AUTHORITY\SYSTEM in sysadmin or full text index will not work. For other three sql2k5 groups, check membership of them. I prefer create sql login for sql service account instead of granting permission to those groups since any windows admin can add user into group. |
|
|
|
|
|
|
logins what they are?