You're reading from SQL Server 2019 Administrator's Guide A definitive guide for DBAs to implement, monitor, and maintain enterprise database solutions

Product type Paperback

Published in Sep 2020

Publisher Packt

ISBN-13 9781789954326

Length 522 pages

Edition 2nd Edition

Languages

SQL

Tools

SQL Server

Concepts

Database Administration

Authors (2):

Marek Chmel

Vladimír Mužný

View More author details

Table of Contents (17) Chapters

Preface

1. Section 1: Provisioning the SQL Server Environment

2. Chapter 1: Setting Up SQL Server 2019 FREE CHAPTER

3. Chapter 2: Keeping Your SQL Server Environment Healthy

4. Section 2: Server and Database Maintenance

5. Chapter 3: Implementing Backup and Recovery

6. Chapter 4: Securing Your SQL Server

7. Chapter 5: Working with Disaster Recovery Options

8. Chapter 6: Indexing and Performance

9. Section 3: High Availability and the Cloud with SQL Server 2019

10. Chapter 7: Planning Migration and Upgrade

11. Chapter 8: Automation – Using Tools to Manage and Monitor SQL Server 2019

12. Chapter 9: Configuring Always On High Availability Features

13. Chapter 10: In-Memory OLTP – Why and How to Use it

14. Chapter 11: Combining SQL Server 2019 with Azure

15. Chapter 12: Taming Big Data with SQL Server

16. Other Books You May Enjoy

Leave a review - let other readers know what you think

SQL Server Agent security

As was discussed at the beginning of this chapter, SQL Server Agent is a service that logs itself into the host operating system. However, we should also take into consideration two more things about security – who is allowed to create jobs and what the user context of the executed job steps is. The following paragraphs explain how to properly secure SQL Server Agent.

SQL Server Agent security roles

SQL Server Agent is almost useless without jobs. As jobs execute a bunch of repetitive administrative tasks, such as backups, database consistency checks, and more, we should carefully control who is allowed to define jobs. Most jobs created in real-life scenarios are created by members of the sysadmin group, but sometimes the DBA is asked to allow job creation for users who are not DBAs. In this case, the job creation and execution rights are pre-defined in the msdb database with the following database roles, sorted from the weakest role to the strongest...