Problem solve Get help with specific problems with your technologies, process and projects.

Limiting the rights of SA

Can you limit rights for the SA login? I know this will open a whole can of worms, but we have a group of SQL Servers with no password. We are trying to figure out the least painful way of correcting this huge security hole. We thought we could create our own "sa" login and password then delete/limit SQL Server's SA login, then change all database owners from SA to our login. I am new to SQL Server and not quite sure of the ramifications of just giving SA a password. None of our applications use SA in the program, so that is good. What about jobs, sp_ ... It's a nightmare and gives me a headache.

SA is an all powerful user. Even if you change the owner SA still can do anything with them. Treat the root cause and assign a strong SA password. I really cannot assess the impact of what assigning an SA password in your environment will be. However, worst case you could always change it back to blank (shock horror) if you discover any issues until you resolve them. The fact databases are owned by sa is not going to be affected by a password change.


For More Information

Dig Deeper on Microsoft SQL Server Installation

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.