Recently I was supporting a third party application. It queries to determine what tables it has permissions to before it proceeds with the rest of its functionality. We had implemented permissions based on the best practice of creating roles, assigning the permissions to the roles, and then making the users members of the roles. The application was querying INFORMATION_SCHEMA.TABLE_PRIVILEGES and of course didn't find any permissions directly against the user in question. We ended up granting explicit permissions to the user so the application would work, but I'm more interested in the general case. How can I determine permissions for an individual user?  Read more...

This article from Warren Campbell shows a process to recreate permissions in development environments after restoring a database from a production instance.  Read more...

Scripts role membership, object-level permissions for all DB users.  Read more...

Scripts role membership, object-level permissions for all DB users.  Read more...

The script provides complete and comprehensive permission reports, on all SQL Server security hierarchy levels, for all Logins. Reports on particular Logins and databases can be customized.  Read more...

Read more...

The script provides complete and comprehensive permission reports, on all SQL Server security hierarchy levels, for all Logins. Reports on particular Logins and databases can be customized.  Read more...

Whenever I do a security presentation, I make sure to cover the Principle of Least Privilege. And when I do I boil it down to this very simple definition: Giving the rights to do the job. No more. No less.  Read more...

Create A role and grant it a permission on a DB Schemas.  Read more...

I am new to SQL Server 2005/2008 having administered SQL Server 2000 and below. I have heard there are a lot of new permissions at the database level. What are they and what do they give rights to perform?  Read more...

This script will walk the hierarchical chain of users and roles to find users with permissions on an object.  Read more...

This article shows the steps to analyze SQL Server logins and permissions to ensure that there are no logins and users that exist who are have unnecessary access  Read more...

Yan Pan explains how to set up proxies in SQL Server 2000, 2005 and 2008, and compares the differences between them  Read more...

You can give your users rights to check if reports have run or jobs are complete without granting full admin rights. Here's how you can do so by using SQLAgentReaderRole in SQL Server  Read more...

Instead of granting higher level permissions, is there a way to allow users that only have public access the ability to see object definitions?  Read more...

Scripts permissions/roles for db user across all databases.  Read more...