Implementing Least Privilege

The principle of least privilege says simply that users and systems should have no greater access than is required to perform their intended duties. This means that users can do what they need to do and nothing more. Other systems can access the secured system to perform their intended operations and can do nothing more. In SQL Server 2008, least privilege is implemented through permissions; however, you must understand several objects and concepts in order to ensure that least privilege is properly implemented. These topics include:

Permissions and authorization
Ownership chains
Credentials

Permissions and Authorization

Permissions are used to authorize the action of users. If a user has the permissions to perform ...

Get SQL Server® 2008 Administration: Real World Skills for MCITP Certification and Beyond now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

SQL Server® 2008 Administration: Real World Skills for MCITP Certification and Beyond by

Implementing Least Privilege

Permissions and Authorization

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly