Suggested ways to manage SQL server password - A Guest Post by Jyoti Prakash | SansSQL

Saturday, March 7, 2015

Suggested ways to manage SQL server password - A Guest Post by Jyoti Prakash

Security management of SQL server is equally important and you must know that how to manage it. The most initial step to make your SQL server authentic is password security, which required management. Whether it is server or database, all the roles are simplified by security administration by allowing every individual user inherit permissions granted, denied, or abolished to those roles. Although there are multiple areas where user has to put the passwords, which require a proper handling.

SA account is a special login, which is provided for the complete backward compatibility. It is assigned to system admin to fix the roles, which cannot be changed. Therefore, SA account is the most often attacked account and deserves special attention. Here in this article you will get to know about the various rules to manage your SA password. Make sure your password must be random, complex, long and most important not used for multiple instances.
If you are looking for an efficient way to manage your passwords, it is advisable that follow the given techniques to keep track of all your passwords, in case of multiple servers you must use them. There could be multiple ways, here are some of them:

Store Password list
If your number of passwords count is manageable then you can just list them on a sheet and store that hard copy in a safe location. It is advisable that do not store the soft copy of this document as it could be a security risk. This is a very secured way to manage passwords, but could be risky if you have lost the hard copy.

Somewhere this method is not very convenient way to manage passwords as at the time of changing passwords, you have to immediately access this list. If in that case you are not in the situation to access this list. Then this list might become incomplete or become wrong over the time. Therefore, it is recommended that you should opt this method only if you have a reliable and diligent person to take care of this list.

Use Cloud storage
If your organization distributes teams with a rich number of users then, it would be difficult for you to manage all the passwords in the hard copy format. Therefore, to manage such large number of password list you can use several cloud based password management systems that let you to share passwords with the entire team. Many password management tools allow you to your passwords locally so that no one can access your passwords except authenticated users, ever if any other organization using the same password management service.

Local Password storage
Some people do not believe on cloud systems, if you are the one, then a local password store like KeePass, Password Safe, might make more sense to you. Such local password store facilitates multiple powerful features, which make them most trustable and secured ways to manage passwords.

With these tools the password store in encrypted format on a local system. To encrypt the stored password keys, tool uses powerful algorithms that make it infeasible for the attacker. These passwords are handled in such a manner that the system memory will also never store an unencrypted password.
However, these tools also have some shortcomings as well, but in terms of security they are much better.

Enterprise Password Managers
If you belongs to a really big enterprise and have number of servers to manage then enterprise password management tools might be the best thing you are looking for.

An Enterprise password manager not only used to store the passwords, however, they provide various other features as well. This tool can automatically manage access auditing and temporary access. This tool can also allow people to quickly access in case of emergency at the time of creating a 'loud' audit entry as well as sending relevant notifications to the authenticated people.
These tools can also schedule the time for regular password change. For example, you can use this feature to change your SA passwords on monthly or quarterly basis without any user interaction.

Do not use Password
In case you do not feel that there is a requirement of any password, so for this SQL Server also has a feature to disable its Authentication. If this is what you required then your all the authentication and password management system completely depends upon Active Directory. In this mode, you are allowed to control anyone's access up to a particular limit by just including the account into the appropriate AD group, this action can be easily analyzed. Additionally, You will also have a simple process to take all those accounts back out of those groups after a particular interval.

The best advantage of this approach is, that you do not have to manage multiple passwords therefore do not have any risk of security in terms of loss passwords. Here you can easily disable SQL Authentication, therefore, can say that it is the most secured way to handle sysadmin access to your SQL Server instances. Although it is not applicable in every case but this option is surely a considered to a good one.

Conclusion:
In the above mentioned information, you can see various ways to manage your SQL Server SA passwords. Each technique has its own pros and cons, so you have to choose the one according to your requirements. However, in case after following a proper way you have lost your password due to any reason then there are professionalSQL password recovery tools available that can access SQL master database file and allow you to reset your lost or forgotten SQL SA and other individual user passwords. You can choose a reputed and reliable product if you are facing any of such problems. 

About Jyoti Prakash
Jyoti is a Sr. DBA - SQL Server at Stellar Data Recovery and has written several article on SQL Server disaster recovery planning & fixing. In addition, she spend her time on Technical forums helping people with the issues related to SQL server.

28 comments:

Daniel Joseph said...

SAP Training Visit Us,
Sap training in chennai | SAP Success factor training in chennai | Workday training in chennai | Success factor training in chennai

Andria BZ said...

Thanks for sharing this niche useful informative post of SAP HCM & ABAP tips to our knowledge, Actually SAP is ERP software that can be used in many companies for their day to day business activities it has great scope in future if anyone wants to take sap training in Chennai get here.
SAP ABAP Training In Chennai | SAP MM Training In Chennai

Mary prince said...

Thanks for this opportunity. I think so all you said is correct in real sequence. But major industries mean not to be true.

Java training in Chennai | Android training in chennai | IOS training in chennai

jessycharl said...

Bind blowing. You have achieved your target. People should follow your blog for getting more information and their basic needs.

Java training in Chennai | Android training in chennai | IOS training in chennai

jessymatleyy said...

Awesome blog. I got impressed really. Just can’t imagine your tech. Your notice point is very clear and can be short little more. I need the elaborated story of your mentioning.

Java training in Chennai | Android training in chennai | Java training in Chennai

glennparyy said...

Your sequence is very unique and vague. I can observe few more things which I left in my blog.

Java training in Chennai | Android training in chennai | Java training in Chennai

Sonika Rawat said...

SQL Server Password Recovery program helps you to easily recover password of both the SQL server accounts: SA and user. It is compatible with all the versions of MS SQL Server. The latest version of SQL Server is MS SQL Server 2014. Download and install trial version on your computer to check its efficiency.
Visit :- Recover SQL Server SA Password: Unlock SQL Server Account


Thanks

rebeka christy said...

Your blog is really useful for me, and I gathered some information from this blog. I did SAP Training in Chennai, at FITA Academy. It's really useful for me to make a bright career in IT industry.

Martina Christy said...


Thanks for sharing this excellent post. Its really very informative and interesting. Keep update your blog. For a best Android training in Chennai please refer this site.
Regards....
Android Course in Chennai


kovalan Jayamurugan said...

Excellent post!!! Selenium automation testing tool makes software and web application process lot simpler. Keep on updating your blog with such awesome information. Selenium Course in Chennai

Abina Ragav said...

Thank you for taking the time to provide us with your valuable information. We strive to provide our candidates with excellent care and we take your comments to heart.As always, we appreciate your confidence and trust in us... ANDROID Training in Chennai

Ramya Bala said...

Great article post i really enjoy to read this article about SQL server concept

SAP Training in Chennai

Aneesha Nasrin said...

your posted blog is awesome... i managed my SQL server with password..thanks

Informatica Training in Chennai

Aamala Ahona said...

A very nice guide. I will definitely follow these tips. Thank you for sharing such detailed article. I am learning a lot from you.


Peridot Systems Chennai Reviews

Ridhima said...

Thanks for the good words! Really appreciated. Great post. I’ve been commenting a lot on a few blogs recently, but I hadn’t thought about my approach until you brought it up.

SEO training in Adyar

Jessy Jessy said...

I would like to thank you for your nicely written post, its informative and your writing style encouraged me to read it till end. Thanks! Funny Videos

Jessy Jessy said...

I am currently writing a research report on Scope of Economics and Economist and I have been exploring your blog for a few hours. Thank you for your post it proved helpful for me. Viral Videos

Jessy Jessy said...

I have never read such quality post/article as yours, ever on the web. Your post/article is very detailed and insightful yet easy to understand. Please write more frequently for this/our community.

Melisa said...


Quite a useful post, I learned some new points here. Thanks admin please keep posting updates regularly to enlighten our knowledge.
Regards,
JAVA Training in Chennai|Android Training in Chennai|iOS Training in Chennai

Nikshitha S said...

The strategy you have posted on this technology helped me to get into the next level and had lot of information in it. The angular js programming language is very popular which are most widely used.
Angularjs Training in Chennai | Angularjs training Chennai

Jones Sathya said...

Yep well said, really its been a struggle to manage those SQL Server passwords, Useful post- Got to know about something needed about passwords of Server - Best Selenium Training in Chennai

Stalin Vinoth said...

the post is good
ETL taining institute in chennai

Geetha Devi said...

Awesome blog..i'm waiting for next updates.
Best Selenium Training in Chennai |Selenium Training in Chennai | Best Selenium Training Center in Chennai
Best Automation Testing Training in Chennai

Nikshitha S said...

Very useful content thanks for sharing such a informative content which provided me the required information on the various technology.
AngularJS Training in Chennai | AngularJS course in Chennai

Anu Priya said...

Pretty article! I found some useful information in your blog, it was awesome to read, thanks for sharing this great content to my vision, keep sharing.
Regards,

Best Android Training in Chennai | Best iOS Training in Chennai

Sanjana E said...

Pretty article with useful information in your blog.
Android Training Institute in Velachery

Geetha Devi said...

Nice Blog to read
Android Training in Chennai | Best Android Training in Chennai | Best Android Training in Chennai with Placement

Jones Sathya said...

Thanks for posting this useful content, Good to know about new things here, Let me share this,
AngularJS Training in Chennai | AngularJS Training | Best AngularJS Training Institute in Chennai

Post a Comment