Hi All,
I am looking for 'Best Practice' advise on how SQL Service accounts should b
e set up in an environment that contains many SQL 2000 Servers in an Active
Directory environment.
Is it a better practice to have the SQL Service (and SQL Agent services) run
off of Locally defined accounts (accounts defined on the SQL Server box its
elf) or AD/domain accounts? I can see how it would be a better security pol
icy to have each SQL Server
have locally defined service accounts as opposed to running off of domain/AD
accounts, but I am looking to see if there are any Best Practices advise on
this.If you do not need to access other servers on the network (like an exchange
server) then use a local account or the local system
Ray Higdon MCSE, MCDBA, CCNA
--
"DBA" <anonymous@.discussions.microsoft.com> wrote in message
news:92EC3F12-05F0-402A-8F93-01AC6113F7D6@.microsoft.com...
> Hi All,
> I am looking for 'Best Practice' advise on how SQL Service accounts should
be set up in an environment that contains many SQL 2000 Servers in an Active
Directory environment.
> Is it a better practice to have the SQL Service (and SQL Agent services)
run off of Locally defined accounts (accounts defined on the SQL Server box
itself) or AD/domain accounts? I can see how it would be a better security
policy to have each SQL Server have locally defined service accounts as
opposed to running off of domain/AD accounts, but I am looking to see if
there are any Best Practices advise on this.
>
>|||Also, if you are using virtual SQL Servers the startup account has to be
domain account.
Rand
This posting is provided "as is" with no warranties and confers no rights.|||Microsoft SQL Server 2000 SP3 Security Features and Best Practices
http://www.microsoft.com/technet/pr...n/sp3sec00.mspx
Thanks,
Kevin McDonnell
Microsoft Corporation
This posting is provided AS IS with no warranties, and confers no rights.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment