Principals with sysadmin login

 35,146 0 ,

This metric counts the number of principals who are members of the sysadmin fixed server role. Adding a normal user to this role could pose a security risk and is not recommended.

Install metric...

Metrics install automatically if you have Redgate Monitor installed.

If you are using Redgate’s SQL Server monitoring tool, Redgate Monitor, you can instantly install and run this metric on your servers.

This metric counts the number of principals who are members of the sysadmin fixed server role. SQL Server relies on role-based security to manage permissions. If multiple IT system administrators have permissions to set up new SQL Server logins, they might be inclined to do so as part of the sysadmin role. Adding a normal user to the sysadmin role could pose a security risk and is not recommended unless the principal is highly trusted. See Server and Database Roles in SQL Server (MSDN).

The associated alert will be raised if the number of expected principals goes higher than the threshold specified. This is useful if your organizations doesn’t have the ability to use Audit Specifications or write triggers for new user creation.

If you want to set a different threshold for each SQL Server you’re monitoring, install the metric and follow the instructions on Customizing settings in Configuring alerts (SQL Monitor documentation).

Metric definition

Name

Principals with sysadmin login

Description

This metric counts the number of principals who are members of the sysadmin fixed server role. SQL Server relies on role-based security to manage permissions. If multiple IT system administrators have permissions to set up new SQL Server logins, they might be inclined to do so as part of the sysadmin role. Adding a normal user to the sysadmin role could pose a security risk and is not recommended unless the principal is highly trusted. If this count is higher than expected, contact system administrators to find out which principals were recently given access and why.

The T-SQL query that will collect data

Instances to collect from

Select all

Databases to collect from

master

Collection frequency

60

Use collected or calculated values

Leave the Use a calculated rate of change between collections check box unchecked

Metric collection

Enabled

Alert definition

Alert name

Principals with sysadmin login increased

Description

This alert is raised when the number of principals who are members of the sysadmin fixed server role goes above the threshold specified. To set a different threshold for each SQL Server you're monitoring, install the metric and then follow the instructions on Customizing settings in Configuring alerts.

Raise an alert when the metric value goes

Above the defined threshholds

Default threshold values

High:According to your environment
Medium:Disabled
Low:Disabled

Note: To set a different threshold for each SQL Server you're monitoring, install the metric and then follow the instructions on Customizing settings in Configuring alerts (SQL Monitor documentation).

Raise an alert when the threshold is passed for

1 collection

Alert is

Enabled

35,146 Rate
Click to rate this post!
[Total: 5 Average: 3.8]

What are custom metrics?

The Redgate Monitor custom metric feature lets you run T-SQL queries against your SQL Servers to collect specific data. You can analyze and receive alerts about your custom data just like everything else Redgate Monitor collects.

But what if you don’t want to write your own queries? No problem. Redgate has brought together a range of quality custom metrics for you to use in Redgate Monitor, which are all are free, tried and tested. You can install straight away, and use the resources on this site to help you write your own.

See the Getting Started guides

What is Redgate Monitor?

Redgate Monitor is a SQL Server performance monitoring tool that gives you real-time and historical SQL Server performance data with alerts and diagnostics.

With its embedded expertise from SQL Server experts and MVPs, it gives you the information and advice you need to find and fix issues before users are even aware.

Find out more about Redgate Monitor

Featured custom metrics

  • Total database file size

    by Hugo Kornelis | 8,257 views |

    This custom metric measures the total database file size (data files and log file combined). An increase in this metric signals that a database was grown. When not done by the DBA, this is an autogrow. Excessive autogrow events should be prevented as this can result to file fragmentation. Try to manually grow files before […] Read more

  • Number of active backups and restores

    by Redgate Monitor Team | 6,311 views |

    This metric will display the total number of active backups and restores on a server. This can be used to correlate with other metrics to explain why disk IO and CPU usage could have changed. Read more

  • Full backup to odd path

    by Eelco Drost | 5,723 views |

    This custom metric queries the MSDB database to search for multiple paths for a full backup Read more

See all custom metrics

Find metrics

See all metrics