BUILTIN\Administrators in Sysadmin Role

Check Description

This check determines whether the built-in Administrators group is listed as a member of the Sysadmin role on Microsoft® SQL Server™.

Note

• If you get the "No permissions to access database" error message, you might not have permissions to the master database.

A SQL Server role is a security account that is a collection of other security accounts. It can be treated as a single unit when you are managing permissions. A role can contain SQL Server logon permissions, other roles, and Windows user accounts or groups.

Fixed server roles have a server-wide scope. They exist outside of the databases. Each member of a fixed server role is able to add other logons to that same role. All members of the Windows BUILTIN\Administrators group (the local Administrators group) are members of the Sysadmin role by default, which gives them full access to all of your databases.

Additional Information

SQL Server 7.0 Security

Microsoft SQL Server 2000 Security

©2002-2004 Microsoft Corporation. All rights reserved.