Backdoor in SQL server. Is this hacking, loop hole or Feature ?

-
DBAs should always be ready to face any kind of disaster in SQL environment. That doesn't matter whether it is PROD or Non- PROD. 

Recently I have been asked regarding recovering the sysadmin password. I couldn't understand the question hence investigated more to understand actual problem. Then I came to know that there is one SQL Server for which admin login and password is lost. I was Like seriously ? How one can be that much of irresponsible? But rather than getting into that kind of discussion I quickly got ready to help the team. 

In SQL Server there is a way to access SQL Instance without login. Lets check that out.

Steps :

1) Open SQL Server Configuration  Manager.











2) Right click on SQL Server service and go to Properties.

3) Go to "Startup Parameters" Tab and Add -m. This will Start the server in Single user mode. 







4) Click Apply and Ok. This change would require Service restart. 




5) Once Service is restarted then, open CMD as Administrator. 

6) Now to connect to instance, type "SQLCMD -S <Instance Name>" (Without Quotes)




Note : 

If you get next line as 1> means SQL instance is connected.

To verify the connection, type simple queries. 

Ex : Select @@Servername





7) Now we can create SQL login and add the same in sysadmin role.

SQL :

C:\Windows\system32>sqlcmd -s VMDHRDB01
1> CREATE LOGIN Superman WITH PASSWORD = 'SaveWorld#2021';
2> go
1> EXEC sp_addsrvrolemember 'Superman', 'sysadmin';
2> go
1>





8) Once login is Created then revert the change made in Step 2. i.e. Remove -m from Startup parameters and restart the SQL Service. 

now we can connect to SQL Server using newly created SQL Admin Login. 



Above Technique will be helpful in situation like,

1) Lost SA Password
2) Someone Intentionally Deleted Admin Logins or Changed Admin Credentials.
3) Administrating unknows SQL environment where admin login and password is unknown. 

Etc.

One can get into the discussion like this is kind of hacking, Data theft or Loop hole in SQL server and start getting others panic. also, this is something which can not be avoided. 

We should look at this as a feature of SQL server which is very much helpful in common scenarios listed above. 


IMP To remember :

Since server is in single user mode, only one connection can be allowed at a time.

If you get below error while login, then, there must be exiting connection in SQL server. 





Comments

Post a Comment

Popular posts from this blog

What is DACPAC and how to use it?

-
Image
Few days before someone asked me a question about DACPAC and BACPAC. To be honest I was really not aware of it and I replied that I have heard these terms for the first time. That person replied DACPAC is used for deploying and upgrading database objects. Even after the clear statement, my reply was like developers would answer this better. Even though DBAs are responsible for migration and deployments. After few days, I got a requirement to migrate database schema (Only Schema) to another instance. In such a case most of us would have used the traditional way to script out the database objects and run the script on another instance. But what if there are many objects? I was exploring the easiest way to migrate the objects and got to know about DAC. After reading about DAC, I felt very sorry myself that I was not aware of such a simplest way of migrating and deploying database objects. I went to my friends who are senior developers and asked this question. None of them was aware ...
Read more

Always on setup end to end - Part 1 || Pre-requisites

-
Image
Hello readers,  Welcome to the new blog after a long time. In this blog I would like to discuss complete end to end always on setup guide for beginners. I will be posting couple of blogs regarding always on in SQL server. I believe that would be helpful to understand Always on in SQL server in easy way. Always on setup involved multiple steps. Hence one may find it difficult. However, if you could plan it well then you may find that always on is much easier to configure and handle. So, without wasting the time lets proceed further. Firstly, we will see what is Always on in SQL Server ? Always on is the high availability and disaster recovery solution introduced in SQL server 2012. As the name suggest, Always on means availability of database all the time even in case of disaster. We can say it is the alternative of mirroring. Only thing is windows failover cluster service also required to be configured as a pre-requisite for always on. In this blog, we will only d...
Read more