Domain Admins

Question

Post reply

Domain Admins

englishn

SSC Enthusiast

Points: 130
More actions
September 13, 2001 at 12:05 pm

#77702

How do you deny access to a database or server instance that is using mixed security and the user is a member of the domain admins group

Viewing 3 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic. Login to reply

David Benoit SSC-Dedicated Points: 34562 More actions · Answer 1

You could limit the BUILTIN\Administrators login permissions by removing it from the System Administrators Server Role. This will clear your problem.

I personally would be wary of removing the login altogether.

David

@SQLTentmaker

“He is no fool who gives what he cannot keep to gain that which he cannot lose” - Jim Elliot

Steven. SSCrazy Eights Points: 9806 More actions · Answer 2

Steven.

SSCrazy Eights

Points: 9806

September 26, 2001 at 2:07 am

#418504

In the past I have removed the Builtin/Administrator from the SA role. But I have found that they have logins within each database, where they are dbo (and cannot be removed easily)

Steven