run against the instance for a view of server roles and permissions by login
Server Role Membership Validation
Need to know how to verify if a login has server-level access to your SQL Server instance?
2014-06-17
2,754 reads
View Server Roles and Permissions per Login
/*
Script Date 19th February 2010
Script Author Perry Whittle
Script Description This script returns all server logins, any Server Roles they hold
and server level permissions assigned*/SELECT sp.name AS ServerPrincipal,
sp.type_desc AS LoginType,
CASE sp.is_disabled
WHEN 0 THEN 'No'
WHEN 1 THEN 'Yes'
END AS UserDisabled,
sp.create_date AS DateCreated,
sp.modify_date AS DateModified,
sp.default_database_name AS DefaultDB,
sp.default_language_name AS DefaultLang,
ISNULL(STUFF((SELECT ',' +
CASE ssp22.name
WHEN 'sysadmin' THEN ssp22.name + ' "Danger Will Robinson"'
ELSE ssp22.name
END
FROM sys.server_principals ssp2
INNER JOIN sys.server_role_members ssrm2
ON ssp2.principal_id = ssrm2.member_principal_id
INNER JOIN sys.server_principals ssp22
ON ssrm2.role_principal_id = ssp22.principal_id
WHERE ssp2.principal_id = sp.principal_id
ORDER BY ssp2.name
FOR XML PATH(N''), TYPE).value(N'.[1]',
N'nvarchar(max)'), 1, 1, N''), 'NoRolesHeld') AS ListofServerRoles,
ISNULL(STUFF((SELECT ';' + ' Permission [' + sspm3.permission_name + '] is [' +
CASE
WHEN sspm3.state_desc = 'GRANT' THEN 'Granted]'
WHEN sspm3.state_desc = 'DENY' THEN 'Denied]'
END AS PermGrants
FROM sys.server_principals ssp3
INNER JOIN sys.server_permissions sspm3
ON ssp3.principal_id = sspm3.grantee_principal_id
WHERE sspm3.class = 100 AND
sspm3.grantee_principal_id = sp.principal_id
FOR XML PATH(N''), TYPE).value(N'.[1]',
N'nvarchar(max)'), 1, 1, N''), 'NoServerPermissions')
+ ' in Server::' + @@ServerName + '' AS PermGrants
FROM sys.server_principals sp
WHERE sp.type IN ('S','G','U') AND sp.name NOT LIKE '##%##'
ORDER BY ServerPrincipal Related content
2013-08-09
1,630 reads
Auditing SQL Server 2012 Server Roles
My organization is looking at SQL Server 2012 and I know that the ability to create roles at the server level is a new feature. Since this is new and impacts security, how do I handle them and how do I audit them?
2012-11-30
2,255 reads
Understanding SQL Server fixed server roles
I know there are fixed server roles that come with SQL Server. How do I best use them within my installations? What should I watch out for?
2009-12-04
5,135 reads
2010-08-27 (first published: 2010-08-25)
3,663 reads