Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
btamulis
Yak Posting Veteran
64 Posts |
 Posted - 2011-02-13 : 18:37:05
|
| Greetings -I have an exisiting install of SQL2005 Express working on my Domain Controller.I purchased a new SQL2008 R2 server. My plan is to install SQL2008 and to then move my databases. In the SQL2008 R2 install process it is not letting me use my current sa password (strength of password doesn't meet requirements).......I want to keep my current sa password - I really don't want to change it.Install won't proceed with my current password. What are my options? Thanks |
|
|
webfred
Master Smack Fu Yak Hacker
8781 Posts |
Posted - 2011-02-13 : 18:45:43
|
you can change it after installation to the password that you want.
No, you're never too old to Yak'n'Roll if you're too young to die. |
 |
|
|
btamulis
Yak Posting Veteran
64 Posts |
Posted - 2011-02-13 : 19:22:37
|
| Thanks - I was hoping that would be the case. |
|
|
|
GilaMonster
Master Smack Fu Yak Hacker
4507 Posts |
Posted - 2011-02-14 : 00:54:48
|
| That said, you should not ignore the password complexity rules, especially in that situation. With SQL running on a domain controller (exceedingly bad practice), anyone who manages to guess/crack the sa password can likely get elevated privileges on the server. If SQL is running as a local administrator, they can get domain admin permissions with a bit of work.I would recommend a couple of things - Install SQL on a different server. SQL on a domain controller is very bad practice from a security point of view if nothing else - Disable the sa account and never use it. Create specific accounts for users - Make sure that SQL is running with minimal right, not as a local admin.--Gail ShawSQL Server MVP |
|
|
|
Lumbago
Norsk Yak Master
3271 Posts |
Posted - 2011-02-14 : 03:57:21
|
| Ok, just a wild guess here but I *seriously* hope that the reason for you not wanting to change the sa password is something else than it being deployed in connection strings all over the place...??- LumbagoMy blog-> http://thefirstsql.com/2011/02/07/regular-expressions-advanced-string-matching-and-new-split-function-sql-server-2008-r2/ |
|
|
|
|
|
|
Installing SQL2008 - sa password