Re: securityadmin roles

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Tom Moreau (tom_at_dont.spam.me.cips.ca)
Date: 09/16/04

• Next message: Amin Sobati: "How to protect my DB against being attached?"
• Previous message: Mario Michela: "translation trigger problem"
• In reply to: SQL Apprentice: "Re: securityadmin roles"
• Messages sorted by: [ date ] [ thread ]

---

Date: Thu, 16 Sep 2004 07:32:20 -0400

You should check out fixed server and fixed database roles in the BOL.
These roles allow specific privileges and nothing else. he securityadmin
role allows you to add a login to SQL Server but not to add that login to
the database. The dbcreator role allows you to create a database but not to
add objects to the database.

-- 
   Tom
----------------------------------------------------
Thomas A. Moreau, BSc, PhD, MCSE, MCDBA
SQL Server MVP
Columnist, SQL Server Professional
Toronto, ON   Canada
www.pinnaclepublishing.com
.
"SQL Apprentice" <mssqlworld@yahoo.com> wrote in message
news:O7YRU42mEHA.1716@TK2MSFTNGP12.phx.gbl...
Hi Tom,
So what is the purpose of  this securityadmin role???
Can't a DBCreator create new logins to the database it creates?
I am working on a new applications that needs DBcreator and SecurityAdmin
roles.
However, I am afraid it could it be a security loop hole for others to
creates and change passwords.
Is it 100% safe to leave this application user with these 2 roles, dbcreator
and securityadmin?
Thanks again Tom,
"Tom Moreau" <tom@dont.spam.me.cips.ca> wrote in message
news:uDZvGV2mEHA.1644@tk2msftngp13.phx.gbl...
> Nope.
>
> --
> Tom
>
> ---------------------------------------------------------------
> Thomas A. Moreau, BSc, PhD, MCSE, MCDBA
> SQL Server MVP
> Columnist, SQL Server Professional
> Toronto, ON Canada
> www.pinnaclepublishing.com/sql
>
>
> "SQL Apprentice" <mssqlworld@yahoo.com> wrote in message
> news:eZcTGT2mEHA.896@TK2MSFTNGP12.phx.gbl...
> Can securityadmin roles change the sa user password and grant user to as
an
> sa role using Query Analyzer?
>
> Thanks in advance
>
>

---

• Next message: Amin Sobati: "How to protect my DB against being attached?"
• Previous message: Mario Michela: "translation trigger problem"
• In reply to: SQL Apprentice: "Re: securityadmin roles"
• Messages sorted by: [ date ] [ thread ]

---

Relevant Pages Re: securityadmin roles ... I am working on a new applications that needs DBcreator and SecurityAdmin ... Thanks again Tom, ... > Columnist, SQL Server Professional ... (microsoft.public.sqlserver.programming) Idiomatic Expressions to Operating System Architecture: Transforming Rigids ... <Subject: Re: Idiomatic Expressions to Operating ... <endpoint during a single session * DATABASE + by ... <statements is a new feature of SQL Server 2005. ... (sci.math) Re: MS Access DAO -> ADO.NET Migration ... William Vaughn ... Microsoft MVP ... Hitchhiker's Guide to Visual Studio and SQL Server ... My migration app works building a SSCE database file with imported data ... (microsoft.public.dotnet.framework.adonet) Re: Cluster will not fail over. ... > As far as the TCP/IP issue goes, you had to rebuild the cluster and were ... > able to restore the master database. ... > a cluster installation you'll have to revisit. ... >> This worked bringing up the sql server in minimal mode. ... (microsoft.public.sqlserver.clustering) Re: MS Access DAO -> ADO.NET Migration ... full SQL Server and I see the logic you explained in a multi user ... allow two users to access the same database file Read/Write at any given ... The book was a pleasure to read after the gibberish that Microsoft 'puts ... Hitchhiker's Guide to Visual Studio and SQL Server ... (microsoft.public.dotnet.framework.adonet)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > SQL-Server  > microsoft.public.sqlserver.programming  > 2004-09