tailieunhanh - SQL Server Tacklebox- P36

SQL Server Tacklebox- P36: This book, as with almost all books, started out as an idea. I wanted to accumulate together those scripts and tools that I have built over the years so that DBAs could sort through them and perhaps adapt them for their own circumstances. | 7 Securing access to SQL Server just create tablename. I believe though that this caveat which really is just best practice anyway is not enough to stop you from pushing for access via Windows groups where you can. Returning to Table we see that there are five rows that correspond to Windows Groups. Two of these are created during the installation of SQL Server one for the SQL Agent user And one for SQL Server Server1 SQLServer2005MSSQLUser Server1 MSSQLSERVER I am not worried so much about these accounts because a general search of these local groups via Manage Computer Local Users and Groups reveals that there are no members other than NT Authority System which I already know has sysadmin privileges. For the other two groups RodDom All_DBA and Builtin Administrators however I would like to know the members. The latter is another built-in local account that I find surprising has not been removed from SQL Server instances. It is certainly best practice and in SQL Server 2008 Microsoft finally has taken this view and does not include this group with the base install of the database engine. I could open Active Directory Users and Computers or even Computer Manager two common tools for managing Windows accounts at the domain and local computer level to see who has local administrative rights on the SQL Server I am managing. However there surely has to be a better way within SQL Server to look up the members of the groups right Yes there is and that is what I am going to cover in the next section. Find Windows Active Directory group membership At this point I have identified several logins that have sysadmin privileges on my SQL Server including two Windows groups one of which is created default in SQL Server 2000 and 2005 Builtin Administrators and one of which was added manually at some point RodDom All_DBA . What I need to know now is who are the members of these groups SQL Server has an extended stored procedure called xp_logininfo that will provide me with .