DBAgent Issue handling pages
Issue 14: Instance Security: multiple Sysadmins
Often, sysadmin privileges are granted without the necessity for it. This could happen under time pressure, because 'that consultant' needed to do his thing or the supplier demands sysadmin privileges for some account(s).
Always try to avoid excessive privileges, and if they exist, they should be examined and wherever possible, be revoked because they are a security risk.
How can you as the DBA be held responsible, wile others have unlimited access too?
Links that could be useful: