This is an exmaple of my SQL onboarding. When we create a new SQL server, this is the configuration I use for every SQL instance. I always start off with a basic next next next install and then configure SQL afterwards. I mostly use PowerShell dbatoolsto perform some of the configuration sitems for me.
This is list of all the configuration items that are required when installing and configuring a SQL server.
1 |
|
2 | Copy files for SQL server installation and maintenance. |
3 | Network adapter power management is turned Off |
4 | Disks are formatted to 64K allocation size |
5 | Service Browser is disabled |
6 | Default port of 1433 is being used unless specified |
7 | SQL service account is set as SeManageVolumePrivilege and SeLockMemoryPrivilege |
8 | Server and Instance are added to the inventory |
9 | Server has been added to the SQL CMS |
10 | SQL Agent is set to Auto Start |
11 | Default paths are set. |
12 | Standard accounts have been added to Local Administrator group |
13 | Permissions are set correctly on the default paths |
14 | Remote Access is enabled |
15 | MAX DOP has been changed from the default of |
16 | Min/Max has been changed from default |
17 | Backup default is set to compress |
18 | Error logs are set to 20 logs |
19 | Security is set to mixed security |
20 | Standard accounts have been added to Sysadmin |
21 | Database Mail is been configured |
22 | Operator Name Data Management has been created |
23 | Alerts are setup |
24 | Model database is set size to 10 MB, data growth 50MB, log growth 20 MB |
25 | Move TempDB datafiles to the T drive |
26 | Remove TempDB files from the C Drive |
27 | Create SQL account for admin access and make sure it is setup correctly |
28 | Account sa has been renamed and disabled |
29 | Ole configuration is disabled |
30 | SQL Instance has been hidden |
31 | Startup procs are not being used unless requested |
32 | Xp_cmdshell is disabled unless requested |
33 | Audits are enabled for failed logins |
34 | Active Directory service accounts are being used instead of built-in group users |
35 |
|
Port 1433, with new firewall in place port 1433 is block. Create a ticket and assign to group.
|
|
36 | END |
0 Comments