Re: Newly created SQL login can't read any databases - can I give it permissions to read all databases
- From: David Hay <david.hay@xxxxxxxxx>
- Date: Fri, 10 Jul 2009 05:49:14 -0700 (PDT)
If you move to windows authentication and create proper groups in AD,
you can give that group permissions once. New users added to that
group then will inherit permissions automatically.
My 2 cents!
On Jul 9, 1:04 pm, franklinhu <frankli...@xxxxxxxxx> wrote:
I have observed that if you create a new SQL login user and only grant
it the public role, that this user cannot do selects on any database
on the server - which makes it pretty useless. To get around this, I
can assign the sysadmin role to this user and then I immediately have
read/write access to all the databases on the server. But this is a
big security problem in that I only want my SQL user to have SELECT
access to all databases.
I would like to be able to grant my SQL login user, the same wide
database access as the sysadmin, but with only limited rights on the
databases.
Based on what I have been able to read in the documentation, it is
impossible to do this without having to modify every database that I
want my new SQL login to access. The GRANT command is only able to
change permissions for a single database, not all the databases in the
system. So it seems that I have to create a user in each of my
databases, grant it the appropriate roles and then associate it with
my SQL login user.
I need to create new databases all the time which need to be accessed
by the SQL login user, so I would have to keep doing this grant/
asociate action every time I need to create a database.
Is there an easier way than this? This seems to basically force you to
run as sysadmin if you want to access all databases without having to
tweak every single one of them to be accessable by a non-sysadmin
account.
fhusqllogin
.
- References:
- Prev by Date: www.dudes-mall.com Ed hardy,(tshirt$13,swim strunk$25,jean$30,handbag$34,cap$13,sunglass$12,shoes$25)nike shoes:$32,handbag:$35,NFL:$20,jean:$30,air force one shoes,lv,gucci,D&G,bbc,coachUGG boot:$50,.free shipping!
- Next by Date: Files and FileGroups question
- Previous by thread: Re: Newly created SQL login can't read any databases - can I give it permissions to read all databases
- Next by thread: SPQ 2005 Server service pack 3 failed and now I cannot open Accoun
- Index(es):
Relevant Pages
|
