SyntaxFix

[sql] Recover sa password

I have a computer which was used by another employee.

SQL Server 2008 R2 was installed but I don't know the 'sa' password.

When I try to alter the login, it gives below error.

Cannot alter the login 'sa', because it does not exist or you do not have permission.

When I try to restore a database, it gives a different permission error.

(When I enter the Security --> Logins --> sa --> Properties windows authentication is disabled.)

Can I change it?

P.S: Password is not "password" :)

This question is related to sql sql-server-2008-r2

The answer is

The best way is to simply reset the password by connecting with a domain/local admin (so you may need help from your system administrators), but this only works if SQL Server was set up to allow local admins (these are now left off the default admin group during setup).

If you can't use this or other existing methods to recover / reset the SA password, some of which are explained here:

Then you could always backup your important databases, uninstall SQL Server, and install a fresh instance.

You can also search for less scrupulous ways to do it (e.g. there are password crackers that I am not enthusiastic about sharing).

As an aside, the login properties for sa would never say Windows Authentication. This is by design as this is a SQL Authentication account. This does not mean that Windows Authentication is disabled at the instance level (in fact it is not possible to do so), it just doesn't apply for a SQL auth account.

I wrote a tip on using PSExec to connect to an instance using the NT AUTHORITY\SYSTEM account (which works < SQL Server 2012), and a follow-up that shows how to hack the SqlWriter service (which can work on more modern versions):

And some other resources:

best answer written by Dmitri Korotkevitch:

Speaking of the installation, SQL Server 2008 allows you to set authentication mode (Windows or SQL Server) during the installation process. You will be forced to choose the strong password for sa user in the case if you choose sql server authentication mode during setup.

If you install SQL Server with Windows Authentication mode and want to change it, you need to do 2 different things:

  1. Go to SQL Server Properties/Security tab and change the mode to SQL Server authentication mode

  2. Go to security/logins, open SA login properties

a. Uncheck "Enforce password policy" and "Enforce password expiration" check box there if you decide to use weak password

b. Assign password to SA user

c. Open "Status" tab and enable login.

I don't need to mention that every action from above would violate security best practices that recommend to use windows authentication mode, have sa login disabled and use strong passwords especially for sa login.

Source: Stackoverflow.com

Examples related to sql

Passing multiple values for same variable in stored procedure SQL permissions for roles Generic XSLT Search and Replace template Access And/Or exclusions Pyspark: Filter dataframe based on multiple conditions Subtracting 1 day from a timestamp date PYODBC--Data source name not found and no default driver specified select rows in sql with latest date for each ID repeated multiple times ALTER TABLE DROP COLUMN failed because one or more objects access this column Create Local SQL Server database

Examples related to sql-server-2008-r2

A connection was successfully established with the server, but then an error occurred during the login process. (Error Number: 233) Rebuild all indexes in a Database How to get last 7 days data from current datetime to last 7 days in sql server Get last 30 day records from today date in SQL Server what is numeric(18, 0) in sql server 2008 r2 Conversion failed when converting date and/or time from character string in SQL SERVER 2008 'MOD' is not a recognized built-in function name How to Convert datetime value to yyyymmddhhmmss in SQL server? SQL Server stored procedure Nullable parameter SQL Server 2008 R2 can't connect to local database in Management Studio

Tags

Vertical-partitioning Data-uri Shared-nothing Traffic Powershell Download-manager Amazon-ec2 Computer-name Service-provider Communicationexception Xmlschemaset Movefileex Vmware-server Equals-operator Restrictions Rdfa Fft Load-time-weaving Sessionfactory Qwerty Jxta Tobjectlist Arithabort Roundtrip Bits-per-pixel Findstr Key-value-store Phobos Mousemove Openoffice.org Instance-eval Transliteration Log4javascript Com-server Picolisp Reverse-geocoding Xmltask Ecos Httpruntime.cache Type-safety Multirow Validation-controls Htop .app Kvm Codesynthesis Compojure Themeroller Excel Jsonserializer Saaj Development-mode Weblogic Method-group Boost-mpl Elapsed Acquisition Acceleratorkey Kr-c Mutability Integer-division Gcc Arpack Boost-test Cpropertysheet Freeze-thaw Wxtextctrl Class-constructors Singly-linked-list Codeblocks Chown Xml-binding Historical-debugging Deferred Paas Mdx Zend-http-client File-properties State-machine-workflow Visualdesigner Graphedit Technical-debt Pymacs Mft Fips Showdialog Ajax-forms Tomcat5.5 Launchdagent Phantom-reference Swf-decompiler Filestream Persist Defaulted-functions Transactional-replication Finance Xceed-datagrid Wgs84 Callblocking Mysql2