Security Administration Guide

Home

Chapter 1: Overview of Security Functions Provided by SQL Server

Chapter 3: Getting Started After Installation

Security Administration Guide

Chapter 2: Overall Process of Security Administration

Chapter 2

Overall Process of Security Administration

This chapter presents an overall process for administering SQL Server in a secure manner. Table 2-1 lists the major tasks that are required and refers you to detailed instructions for handling each task.

Table 2-1: Overall process for security administration
Task
Description
Refer To
Install SQL Server, including auditing
This task includes the procedures that you follow to install SQL Server. The task includes preparing for installation, loading files from your distribution medium, performing the actual installation, and getting started administering the physical resources that are required.
SQL Server installation and configuration guide.
Get started with security administration
Immediately after installation, take steps to set up a secure administrative environment for SQL Server. This includes enabling auditing, granting roles to individual users to ensure individual accountability, and assigning login names to System Administrators and System Security Officers.
Chapter 3, "Getting Started After Installation," in this book.
Determine the physical resources required for your user databases and create the databases
This task includes making storage management decisions, initializing database devices, creating and using segments, and creating user databases.
System Administration Guide.
Add user logins to the server and add users to databases
Involves adding logins, creating groups, add
ing users to databases, dropping and locking logins, and assigning initial passwords.
Chapter 4, "Managing SQL Server Logins and Database Users," in this book.
Establish and assign special roles to users
Includes assigning these roles: sa_role (for System Administrators), sso_role (for System Security Officers), and oper_role (for operators who backup and restore databases).
Chapter 5, "Roles in SQL Server," in this book.
Administer permissions for users, groups, and roles
Includes granting and revoking permissions to execute certain SQL commands, execute certain system procedures, and access databases, tables, particular table columns, and views.
Chapter 6, "Managing User Permissions," in this book.
Administer the use of remote servers
Includes establishing and administering the access that is permitted between servers, adding and dropping remote server access, and mapping remote login names to local login names.
Chapter 7, "Managing Remote Servers," in this book, coupled with the SQL Server installation and configuration guide.
Set up and maintain auditing
Includes determining what is to be audited, auditing the use of SQL Server, and using the audit trail to detect penetration of the system and misuse of resources.
Chapter 8, "Auditing," in this book.

Task	Description	Refer To
Install SQL Server, including auditing	This task includes the procedures that you follow to install SQL Server. The task includes preparing for installation, loading files from your distribution medium, performing the actual installation, and getting started administering the physical resources that are required.	SQL Server installation and configuration guide.
Get started with security administration	Immediately after installation, take steps to set up a secure administrative environment for SQL Server. This includes enabling auditing, granting roles to individual users to ensure individual accountability, and assigning login names to System Administrators and System Security Officers.	Chapter 3, "Getting Started After Installation," in this book.
Determine the physical resources required for your user databases and create the databases	This task includes making storage management decisions, initializing database devices, creating and using segments, and creating user databases.	System Administration Guide.
Add user logins to the server and add users to databases	Involves adding logins, creating groups, add ing users to databases, dropping and locking logins, and assigning initial passwords.	Chapter 4, "Managing SQL Server Logins and Database Users," in this book.
Establish and assign special roles to users	Includes assigning these roles: sa_role (for System Administrators), sso_role (for System Security Officers), and oper_role (for operators who backup and restore databases).	Chapter 5, "Roles in SQL Server," in this book.
Administer permissions for users, groups, and roles	Includes granting and revoking permissions to execute certain SQL commands, execute certain system procedures, and access databases, tables, particular table columns, and views.	Chapter 6, "Managing User Permissions," in this book.
Administer the use of remote servers	Includes establishing and administering the access that is permitted between servers, adding and dropping remote server access, and mapping remote login names to local login names.	Chapter 7, "Managing Remote Servers," in this book, coupled with the SQL Server installation and configuration guide.
Set up and maintain auditing	Includes determining what is to be audited, auditing the use of SQL Server, and using the audit trail to detect penetration of the system and misuse of resources.	Chapter 8, "Auditing," in this book.


	Expand Search