Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
noamg
Posting Yak Master
215 Posts |
 Posted - 2011-11-29 : 06:27:51
|
| hi,I am responsible on a very high security DB.The users have the logins + permission to run a specific list of SPs.( by signature )I am affraid of the network admin, they can access the DB directly.Is their any way to know such a case ?many thanksNoamNoam Graizer |
|
|
sandy123
Starting Member
14 Posts |
|
|
noamg
Posting Yak Master
215 Posts |
Posted - 2011-11-29 : 07:40:06
|
| ok. But the admin can disable this auditing ...Noam Graizer |
 |
|
|
sandy123
Starting Member
14 Posts |
Posted - 2011-11-29 : 07:59:49
|
| You can find easily who disabled the auditing.sandy |
|
|
|
noamg
Posting Yak Master
215 Posts |
Posted - 2011-11-29 : 08:13:33
|
| 1. how I can find who disable the audit ?2. but then I will not know what he/she did in the DBNoam Graizer |
|
|
|
sodeep
Master Smack Fu Yak Hacker
7174 Posts |
Posted - 2011-11-30 : 15:46:56
|
| Do you have Builtin Administrator in Security Logins.Network will have full right to DB if they are in this group. |
|
|
|
noamg
Posting Yak Master
215 Posts |
Posted - 2011-12-01 : 03:01:29
|
| can I avoid from the window-domain-admin to access the DBNoam Graizer |
|
|
|
sodeep
Master Smack Fu Yak Hacker
7174 Posts |
Posted - 2011-12-01 : 16:17:17
|
| Yes..Check for Removing Builtin Administrator over here but SA should have full privileges for it. BE Careful and after full testing you can go ahead. |
|
|
|
Sachin.Nand
2937 Posts |
Posted - 2011-12-01 : 23:38:29
|
| Just create a Logon trigger and if the login is through an BuiltIn admin just DC the connection.PBUH |
|
|
|
noamg
Posting Yak Master
215 Posts |
Posted - 2011-12-04 : 02:02:53
|
| Can the buildin-admin remove the trigger or disable it ?Noam Graizer |
|
|
|
|
|
|
security issue