asked
Removed builtin/administrators group, instance not broadcasting.
Hello, I removed the builtin/administrtors group and from a sql2005 sp3 instance and now the instance does not show when browsing for it, either using management studio , or if you try to connect an odbc connection. You can however type in the name of the server and connect using the management studio software or connect via an odbc. All applictions are still working, but i'm concerned as to why this happened, any help would be greatly apprecited. Thank you
@BradleySQL - for security reasons. Why should the administrators of a windows server need to have admin (or any) permissions to a SQL database?
As Kev says, it's a demarcation thing. In the wonderful world of SOX, for example, "Segregation of Duty" is one of the mantras, and that means that I, employed as a SQL Server DBA, am not allowed to do basic server-level maintenance, even though I may be the best qualified to do so (which I'm not, I hasten to add). This is a particular nuisance in the small hours of the morning when there's a problem and I need to reboot a SQL server...
Why would you remove the builtin/administrators group? Just curious.
Is this a default instance or named instance? If named you need SQL Browser to be enabled and running.
Is it good practice to start SQL Browser for critical applications instead of creating alias..?
potentially the SQL Browser service is running under an account that is in the group that has been removed, therefore it's not broadcasting the server name. Check the service account and maybe change it to see if it is resolved. This isnt actually a big issue in most cases. Only people who know the instance exists will be able to connect so you avoid 'chancers' attempting to connect.
