Kevin Remde's IT Pro Weblog
IT Pro Resources
TechNet EventsMicrosoft Security Response CenterTechNet IT Manager Community HubMicrosoft Virtual AcademyKevin’s Evaluation Download Center
IT Pro Evangelist Blogs
Blain Barton Blain Barton's Blog@BlainBar
Brian LewisMy Thoughts on IT...@BrianLewis_
Dan Stolts IT Pro Guru Blog@ITProGuru
Jennelle Crothers TechBunny@jkc137
Keith MayerIT Pros ROCK!@KeithMayer
Kevin Remde Full of I.T.@KevinRemde
Matt Hester Matthew Hester's WebLog@MatthewHester
Tommy PattersonVirtually Cloud 9@Tommy_Patterson
Yung Chou Yung Chou on Hybrid Cloud@YungChou
SQL Server 2005 Tidbit 029
Another tidbit? It’s been awhile!
FAR too long. My apologies.
This tidbit is about a new flexible security feature in SQL Server 2005: SQL Server Agent Proxies.
In the past, if you wanted a job to have access to some secured subsystem, you had to basically give that job rights as the sa user, or some other account that you created specifically for all agent job steps. So the job had all-or-nothing access.
In SQL 2005, the SQL Server agent has access to some subsystems that it didn’t have access to before, such as SQL Server Integration Services, and Analysis Services.
But the big benefit in 2005 is that you can create or use Windows accounts or groups (but preferably accounts) that you specify, and then proxy those for the sake of agent jobs and those special protected tasks.
Got an IT question? Give me a comment, or contact me.