Click here to monitor SSC
SQLServerCentral is supported by Red Gate Software Ltd.
 
Log in  ::  Register  ::  Not logged in
 
 
 
        
Home       Members    Calendar    Who's On


Add to briefcase

Securityadmin server role permissions Expand / Collapse
Author
Message
Posted Tuesday, February 19, 2008 10:27 AM
SSC-Enthusiastic

SSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-Enthusiastic

Group: General Forum Members
Last Login: Monday, September 9, 2013 8:12 AM
Points: 137, Visits: 297
Under SQL Server 2000, our corporate security group was granted the sysadmin role in order to managed logins and db access. In 2005, we would like to grant them the securityadmin role, however, when we grant a login this role, they can create a login, but cannot grant it db access or assign db_roles. BOL says that the secorityadmin role should be able to manage db access and roles. The error we get says that the securityadmin login cannot access a database under the current security context. Has anyone else had this problem, or are we missing something?
Post #457516
Posted Thursday, February 28, 2008 9:08 AM


Hall of Fame

Hall of FameHall of FameHall of FameHall of FameHall of FameHall of FameHall of FameHall of FameHall of Fame

Group: General Forum Members
Last Login: Tuesday, September 23, 2014 9:22 AM
Points: 3,461, Visits: 351
You add them to the security admin group in the database. That should be fine.

Cheers,
Sugeshkumar Rajendran
SQL Server MVP
http://sugeshkr.blogspot.com
Post #461791
Posted Thursday, February 28, 2008 9:19 AM
SSC-Enthusiastic

SSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-Enthusiastic

Group: General Forum Members
Last Login: Monday, September 9, 2013 8:12 AM
Points: 137, Visits: 297
In BOL it says:

Members of the securityadmin fixed server role manage logins and their properties. They can GRANT, DENY, and REVOKE server-level permissions. They can also GRANT, DENY, and REVOKE database-level permissions. Additionally, they can reset passwords for SQL Server logins.

Why, then, do we have to grant the login the db_securityadmin role in each database?

Post #461805
Posted Friday, February 29, 2008 9:22 AM


Hall of Fame

Hall of FameHall of FameHall of FameHall of FameHall of FameHall of FameHall of FameHall of FameHall of Fame

Group: General Forum Members
Last Login: Tuesday, September 23, 2014 9:22 AM
Points: 3,461, Visits: 351
Is this sorted out or still having issues?

Cheers,
Sugeshkumar Rajendran
SQL Server MVP
http://sugeshkr.blogspot.com
Post #462497
« Prev Topic | Next Topic »

Add to briefcase

Permissions Expand / Collapse