What are Schemas for? All of you are familiar with the default and built-in schema "dbo". When you create an object without a schema, "dbo" becomes the schema for the object. Generally, it is NOT considered a good practice from a manageability or security perspective to have everything owned by "dbo". The alternative is to … Continue reading SQL Server: Time To Switch Schema Of All Objects Away From “dbo”
Before we begin, if you are running Windows 7 or above and if you do not have the PowerShell Active Directory module installed, please do so first by downloading and installing “Remote Server Administration Tools”. I personally cannot live without this module. Please be sure to check out my related blog post which uses the function described … Continue reading PowerShell: Lookup Active Directory Accounts Flexibly/Exhaustively For A List Of First/Middle/Last Names
I am a strong proponent and a believer of using AD groups (not even AD users) to manage your SQL Server permissions end to end. Restated, you would not have any individual AD users as logins in your SQL Server instance, all instance logins with be AD groups. If you are dealing with plain SQL … Continue reading SQL Server – Drop An User In All Databases & Drop The Login Too!
Permissions are complex! Permissions management is not easy. You have a lot to deal with Direct user privileges via grants Privileges to AD Group login of which user is part of User could be part of multiple AD groups which have a login on the instance Privileges granted to the role that user is in … Continue reading SQL Server – Find Effective Permissions of An User At Database, Server or Object Level – The Right Way!