Environment Conventions

These checks are for environment and configurations conventions to the SQL Server.

Table of contents
  1. Not Using Code Retry Logic
  2. Not Using Read Committed Snapshot Isolation
  3. Application User Granted db_owner Role
  4. Not Using Query Execution Defaults
    1. SSMS (SQL Server Management Studio) and Visual Studio Settings
    2. Visual Studio Database Projects
  5. Application User is not a Contained User
  6. Object Not Owned by dbo
  7. Database Compatibility Level is Lower Than the SQL Server
  8. Not Using a Relational Database for Relational Data
  9. Connection String Not Scalable
  10. Connection String Settings
    1. Application Name for SQL Server Connections
  11. Using Service Broker or Database as Queue
  12. Slow Network Queries
  13. Not Following the Architecting Microsoft SQL Server on VMware vSphere Best Practices
  14. Not Using Modern Database Driver
  15. Schema Drift Not Handled
  16. Not Using SET ARITHABORT to ON
  17. Unused Database Objects
  18. Using SQL Server to Send Emails
  19. Not using group Managed Service Account (gMSA)

Back to top

Not Using Code Retry Logic

Check Id: 54 Not implemented yet. Click here to add the issue if you want to develop and create a pull request.

It is best practice to implement client code to mitigate connection errors, transient errors, and command errors like deadlocks that your client application encounters when communicating with a SQL Server (On-premises SQL Server, Azure SQL Database, Azure SQL Managed Instance and Azure Synapse Analytics).

Retry logic should be implemented by the application/client code โ€œbut if your stored procedure isnโ€™t being called by an application, doing it in T-SQL isnโ€™t a horrible alternative ๐Ÿ——โ€ - Erik Darling

SQL Server might be in the process of shifting hardware resources to better load-balance or fail over in a HA/DR (High Availability / Disaster Recover). When this occurs there will be a time normally 60 seconds where your app might have issues with connecting to the database.

Applications that connect to a SQL Server should be built to expect these transient errors. To handle them, implement retry logic in their code instead of surfacing them to users as application errors.

.NET 4.6.1 or later (or .NET Core) can use the .NET SqlConnection parameters for connection retry ๐Ÿ—— (by Microsoft).

Ensure you are using the failover group name or availability group listener name in your connection string. The SQL Server name should not be something like โ€˜SQL01โ€™. This indicates you are connecting directly to a specific SQL Server instance instead of a group of SQL Servers.

Back to top

Not Using Read Committed Snapshot Isolation

Check Id: 161 Not implemented yet. Click here to add the issue if you want to develop and create a pull request.

Enabling Read Committed Snapshot Isolation (RCSI) can effectively resolve numerous blocking and deadlocking issues that may arise.

Frequently, the NOLOCK (READ UNCOMMITTED) isolation level is employed to mitigate common instances of blocking and locking. However, it is important to note that this approach introduces its own set of challenges associated with dirty reads.

When RCSI is enabled, data read queries no longer block data writer queries, and likewise, data writers do not block the progress of readers.

Read Committed Snapshot Isolation is the default isolation level for Azure SQL databases.

Special attention should be made to ensure your SQL Server can handle the versioning for data modifications in the tempdb or local Accelerated Database Recovery (ADR) in SQL Server 2019 and greater. A healthy SQL Server configured with best practices first is recommended. Lower environment testing or enable allow snapshot isolation and monitoring the workload, then enable read committed snapshot is recommended.

Remember to remove the NOLOCK hints.

Back to top

Application User Granted db_owner Role

Check Id: 55 None yet, click here to add the issue

You will want to give an account or process only those privileges which are essential to perform its intended function. Start your development with the app user account only a member of the db_reader, db_writer and db_executor roles.

When a vulnerability is found in the code, service or operating system the โ€œPrinciple of least privilegeโ€ lessens the blast radius of damage caused by hackers and malware.

Back to top

Not Using Query Execution Defaults

Check Id: 56 Not implemented yet. Click here to add the issue if you want to develop and create a pull request.

There are query execution defaults included in SSMS (SQL Server Management Studio) and Visual Studio. These defaults must be maintained or overridden at the connection or session level if needed. If the defaults are not consistently used certain TSQL script, stored procedures or functions might not behave as developed.

When dealing with indexes on computed columns and indexed views, four of these defaults (ANSI_NULLS, ANSI_PADDING, ANSI_WARNINGS, and QUOTED_IDENTIFIER) must be set to ON. These defaults are among seven SET options that must be assigned the required values when you are creating and changing indexes on computed columns and indexed views.

The other three SET options are ARITHABORT (ON), CONCAT_NULL_YIELDS_NULL (ON), and NUMERIC_ROUNDABORT (OFF). For more information about the required SET option settings with indexed views and indexes on computed columns, see Considerations When You Use the SET Statement ๐Ÿ—— (by Microsoft).

It is not best practice to modify these query execution settings at the SQL Server level.

SSMS (SQL Server Management Studio) and Visual Studio Settings

In SSMS (SQL Server Management Studio) and Visual Studio these 5 ANSI execution settings are on by default: QUOTED_IDENTIFIER, ANSI_PADDING, ANSI_WARNINGS, ANSI_NULLS, ANSI_NULL_DFLT_ON

These 2 advanced execution settings are on by default: ARITHABORT, CONCAT_NULL_YIELDS_NULL

Visual Studio Database Projects

Visual Studio database projects should be setup with the 7 query execution SET defaults (Project Settings > โ€˜Database Settingsโ€™ button). If there have been publish database objects without these query execution defaults, they will need to be updated. It is possible to check the โ€œIgnore quoted identifiersโ€ and โ€œIgnore ANSI Nullsโ€ under the โ€˜Advancedโ€™ button when manually publishing the database project.

Back to top

Application User is not a Contained User

Check Id: 57 None yet, click here to add the issue

Users that only access one database should generally be created as contained users which means they donโ€™t have a SQL Server โ€œloginโ€ and are not found as users in the master database. This makes the database portable by not requiring a link to a SQL Server Login. A database with contained users can be restored to your development SQL Server or a migration event needs to occur in production to a different SQL Server.

Back to top

Object Not Owned by dbo

Check Id: 58 None yet, click here to add the issue

It simplifies object management with dbo owning all the database objects. You will need to transfer ownership of objects before an account can be deleted.

Back to top

Database Compatibility Level is Lower Than the SQL Server

Check Id: 59 None yet, click here to add the issue

The database compatibility level lower than the SQL Server it is running on.

There might be query optimization you are not getting to run on an older database compatibility level. You might also introduce issues with a more modern database compatibility level.

Back to top

Not Using a Relational Database for Relational Data

Check Id: 190 None yet, click here to add the issue

It is a best practice to use a relational database management system (RDBMS) when handling data with complex relationships, such as customers, accounts, people, products, invoices, purchase orders, โ€ฆ While NoSQL (non-relational) document databases are powerful tools for unstructured big data, they are not ideally suited for managing relational data due to their schema-less nature and lack of enforced data constraints.

Issues with Using NoSQL Document Databases for Relational Data:

  • Lack of Schema Enforcement:
    • NoSQL databases operate on a โ€œschema-on-readโ€ model, which means they do not enforce a schema when data is written.
    • This can lead to inconsistent or invalid data being stored, as there are no constraints to prevent incorrect data entry.
    • Developers may spend additional time implementing workarounds for features natively supported by relational databases.
  • No Constraints on Write:
    • Absence of foreign keys, primary keys, and unique constraints increases the risk of data anomalies.
    • Without these constraints, maintaining data integrity becomes the responsibility of the application code, which can be error-prone.
  • Data Integrity Challenges:
    • Relationships between entities must be managed manually, often leading to duplicated or denormalized data.
    • Updating related data across multiple documents can become complex and may result in inconsistencies.
  • Complexity in Querying Relational Data:
    • Performing joins or complex queries across multiple collections is not as efficient or straightforward as in relational databases.
    • This can lead to performance issues and increased development time for writing and maintaining queries.

Recommendation:

  • Use Relational Databases for Relational Data:
    • Leverage the strengths of RDBMS like enforcing schemas, constraints, and supporting complex joins.
    • This ensures data integrity, consistency, and reduces the risk of errors.
  • Educate Team Members:
    • Clarify misconceptions about โ€œdocument databasesโ€ being suited for handling document outputs.
    • Emphasize that the term refers to the data storage model, not the type of data (e.g., printed documents or emails).

Back to top

Connection String Not Scalable

Check Id: 158 None yet, click here to add the issue

Application connection strings should be set up to be scalable. 3 different connection strings are recommended.

In the beginning, all three connection strings below will have the same content โ€“ they will all point to your production database server. When you need to scale, though, the production DBA can use different techniques to scale out each of those tiers.

  1. Writes with Real-Time Reads
    • This connection is hard to scale, so keep the number of queries here to a minimum.
    • Treat this like a valuable resource.
    • Functions like inserting or modifing database rows, then redirecting or displaying the data directly afterwards would fall into the use case pattern. Determine if it is necessary to redirect to a display UI, or just notify the user of the action. In high usage databases, performing additional database queries could consume resources unnecessarly.
    • Indicate on the connection string ApplicationIntent=ReadWrite.
    • Determine the MultiSubnetFailover property of True or False
  2. No Writes with Reads That Can Tolerate Data Older Than 15 Seconds
  3. No Writes with Reads That Can Tolerate Data Older Than Several Hours
    • This connection is for operational reporting, and not to be confused with analytical reporting aggregations like SUM(), COUNT(), AVG(), โ€ฆ reporting. True analytical reporting should be performed in a system like a data warehouse or Online Analytical Arocessing (OLAP) system.
    • Queries of these types utilize higher amounts of CPU and storage Input/Output.
    • Stakeholders will eventually have to decide whether to prioritize near-real-time data for reports at the expense of slowing down production, or to separate these resource-intensive queries to a data source with a longer delay.
    • Indicate on the connection string ApplicationIntent=ReadOnly.
    • Determine the MultiSubnetFailover property of True or False

Back to top

Connection String Settings

Check Id: 182 None yet, click here to add the issue

Application Name for SQL Server Connections

Always include the optional Application Name parameter in your connection strings when connecting to SQL Server. This way the SQL Server will have info on what application is using the connection. This can be invaluable info when locating errors in the database server. Documentation should be kept on how to contact the app developer or include a distribution list email address in the connection strings โ€œApplication Nameโ€. You can use up to 128 characters for the application name.

Simply include โ€œApplication Name=MyAppName <MyAppGroupName@domain.com>;โ€ in the connection string.

Back to top

Using Service Broker or Database as Queue

Check Id: 164 None yet, click here to add the issue

Use a different message queue based system other than SQL Server Service Broker.

Using a database as message queue platform is an anti-pattern. You need to poll which hammers the database. Using a single table for inserts, updates and queries are not performant when all three need to occur on the same table. Clearing the rows once the workflow is complete, so do you perform and status update on the row or perform a delete which can be inefficient.

Back to top

Slow Network Queries

Check Id: 166 None yet, click here to add the issue

There are a couple causes for this type of issue we can see.

  • The first cause is the large result sets, where client apps request numerous rows, leading to unnecessary network utilization and client processing.
    • The recommended resolution is to balance processing between SQL Server and client apps, letting SQL Server handle filtering and aggregations to limit the result at the client app, while more data-related computations should be performed on the client side. Web/app servers cost less than SQL Serverโ€™s per core license.
  • Another cause is when the client app is slow to fetch results and notify SQL Server, resulting in the โ€œASYNC_NETWORK_IOโ€ wait.
    • The solution is to fetch the results as quickly as possible using a tight loop or storing results in memory for subsequent processing.
  • Another cause might be the client machines under stress, with I/O, memory, or CPU resource constraints, can cause slow processing.
    • The resolution involves diagnosing and eliminating these resource constraints through tools like Performance Monitor.
  • See Troubleshoot slow queries that result from ASYNC_NETWORK_IO wait type ๐Ÿ—— by Microsoft
  • See Reducing SQL Server ASYNC_NETWORK_IO wait type ๐Ÿ—— by Nikola Dimitrijevic at SQLShack.com

Back to top

Not Following the Architecting Microsoft SQL Server on VMware vSphere Best Practices

Check Id: 169 None yet, click here to add the issue

The Architecting Microsoft SQL Server on VMware vSphere ๐Ÿ—— by VMware is a best practices guidance for designing and implementing Microsoft SQL Server in a virtual machine to run on VMware vSphere.

For a quick video ramp up on configuring VMware for SQL Server see the SQL Server on VMware vSphere Accelerator Video Series ๐Ÿ—— by David Klee

Back to top

Not Using Modern Database Driver

Check Id: 170 None yet, click here to add the issue

It is generally recommended to keep database drivers up-to-date. Updating drivers ensures compatibility with the latest database versions.

Microsoft recommends using the database driver named Microsoft OLE DB Driver for SQL Server (MSOLEDBSQL or MSOLEDBSQL19 for encryption changes) ๐Ÿ——.

Previous database drivers versions like Microsoft OLE DB Provider for SQL Server (SQLOLEDB) ๐Ÿ——, and SQL Server Native Client (SNAC) ๐Ÿ—— have either been deprecated or no longer maintained. See Driver history for Microsoft SQL Server ๐Ÿ—— other database drivers not recommended for new application development.

Back to top

Schema Drift Not Handled

Check Id: 172 None yet, click here to add the issue

Schema drift is a gradual change in the structure in a database. It occurs when a target database deviates from the baseline used to originally deploy it. Schema drift can impact all the database objects like tables, views, stored procedures, functions, โ€ฆ

Back to top

Not Using SET ARITHABORT to ON

Check Id: 175 None yet, click here to add the issue

Always set ARITHABORT to ON in your logon sessions. Setting ARITHABORT to OFF can negatively impact query optimization, leading to performance issues. ๐Ÿ—— by Microsoft

If SET ARITHABORT is OFF, CREATE, UPDATE, INSERT, and DELETE statements on tables with indexes on computed columns or indexed views fail. ๐Ÿ—— by Microsoft

If ANSI_WARNINGS has a value of ON and the database compatibility level is set to 90 or higher then ARITHABORT is implicitly ON ๐Ÿ——, you are good.

Back to top

Unused Database Objects

Check Id: 181 None yet, click here to add the issue

Remove unused database objects. Rely on the version control system to keep track of previous objects.

Removing unused objects helps in keeping the database schema clean and organized. It improves readability and understanding of the database structure for developers, administrators, and other stakeholders.

Unused datbase objects can pose security risks if they contain sensitive data or are not properly secured. By removing these objects, we reduce the potential attack surface and enhance the overall security posture of the database.

If you need to create a temporary database object like a table using a naming pattern like dbo.MyTempTable_DELETE_ME_AFTER_YYYY_MM_DD. This allows your future self or others to know when it is safe to drop the object.

CREATE TABLE dbo.MyTempTable_DELETE_ME_AFTER_YYYY_MM_DD ( /* โ† Look here */
    SomeColumn    nvarchar(100)
   ,AnotherColumn nvarchar(100)
);

Back to top

Using SQL Server to Send Emails

Check Id: 183 None yet, click here to add the issue

Do not use SQL Server to send email. SQL Serverโ€™s email delivery is not very robust. Sending agent alerts when a database job fails is fine. When email delivery stops, you wonโ€™t notice. SQL Serverโ€™s email troubleshooting is almost nonexistent.

Back to top

Not using group Managed Service Account (gMSA)

Check Id: 185 None yet, click here to add the issue

A group Managed Service Account, also known as gMSA, provides enhanced security compared to standard managed service accounts. They are designed for automated processes, applications, services, or tasks that need credentials but donโ€™t involve user interaction.

When possible use gMSA for SQL Server as a best practice. gMSAs like โ€œDOMAIN\gMSA$โ€ provide automatic password management and rotation, enhancing security by reducing the risk of password-related vulnerabilities. gMSAs can also be used across multiple servers, making them ideal for clustered or distributed SQL Server environments, while simplifying administration tasks such as password updates.

To use gMSA for an application, run the app as a Windows service, or launched with PsExec.exe, execute via scheduled tasks, or code in an IIS App Pool.

Back to top