Password change without old password in SQL Server 7

This tip shows you how to allow SQL Server 7 users with a Security Admin role to update passwords without knowing the old password.

This tip was submitted to the SearchSQLServer.com tip library by member Bob Lindemulder. Please let others know

how useful it is via the rating scale at the end of the tip. Do you know a useful tip, timesaver or workaround? Submit it to our monthly tip contest and you could win a prize.


SQL Server 7 does not allow users with a Security Admin role to update passwords without knowing the old password. You can create a copy of sp_password so that the user does not have to have System Admin privileges.

Replace this code:

    -- CHECK PERMISSIONS --
 IF (not is_srvrolemember('sysadmin') = 1)
        AND not @self = 1

with this:

    -- CHECK PERMISSIONS --
 IF (not is_srvrolemember('sysadmin') = 1)
        AND (not is_srvrolemember('securityadmin') = 1)
        AND not @self = 1


Do you have comments on this tip? Let us know.
This was first published in May 2005

Dig deeper on SQL Server Security

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

SearchBusinessAnalytics

SearchDataCenter

SearchDataManagement

SearchAWS

SearchOracle

SearchContentManagement

SearchWindowsServer

Close