You’re offline. This is a read only version of the page.
Our CRM is hosted by an external hoster and it is impossible to get permanent sysadmin rights for a service account. CRM Deployment Guide explaines that sysadmin is the minimum permission. Does anyone have the same problem ? I it possible to reduce permission in SQL Server for CRM ? I would like to read your best practices.
TIA
*This post is locked for comments
:)) I'm lucky enough to have those permissions (or, at least, I can get them when I need to here).
But this may help - I think it's aligned with what I wrote above:
serverfault.com/.../minimal-required-user-permissions-for-running-ms-crm
For the updates, I don't think you need sysadmin either, since those updates will rarely do anything on the SQL server that goes beyond DBO permissions on the config/org databases
Thank Alex for your reply. I got no usefull suggestion from the hoster, only to avoid sysadmin. I will start with db_owner on crm/config databases and Server role db_creator and then see what happen during the next update. Did you have trouble during crm update with your security configurations ?
Hi,
I don't think your service account has to be a sysadmin account - it's mostly required to use the deployment manager (since, when using the deployment manager, you may have to create new databases etc). Other than that, it seems dbo on the organization/config database should be good enough.. but then again, if they are hosting the CRM for you, what are they suggesting?
Stay up to date on forum activity by subscribing. You can also customize your in-app and email Notification settings across all subscriptions.
#1
André Arnaud de Cal...
291,253
Super User 2024 Season 2
#2
Martin Dráb
230,188
Most Valuable Professional
#3
nmaenpaa
101,156
Share
Report
All responses (
Answers (