InformationThe sa account is a widely known and often widely used SQL Server login with sysadmin privileges. The sa login is the original login created during installation and always has principal_id=1 and sid=0x01.
It is more difficult to launch password-guessing and brute-force attacks against the sa login if the name is not known.
SolutionReplace the <different_user> value within the below syntax and execute to rename the sa login.
ALTER LOGIN sa WITH NAME = <different_user>;
It is not a good security practice to code applications or scripts to use the sa account. However, if this has been done renaming the sa account will prevent scripts and applications for authenticating to the database server and executing required tasks or functions.
By default, the sa login name is 'sa'.
In the case of AWS RDS the default name for this account is rdsa instead of sa.