Home Forums SQL Server 2008 SQL Server 2008 Administration How to Give User Access to another user RE: How to Give User Access to another user

  • April 22, 2013 at 8:43 am

    #1608717

    create a specific role with only the limited permissions you want.

    once the role is created, then add the users to that role.

    remember roles are cumulative, so if you add the user to other roles (like built in roles like db_owner, or db_data_reader) they may have more permissiosn than you wnat.

    also, make sure the users'login is not in the sysadmin role, which would short circuit all permissions, and they could do anything they want to any data they want.

    stick with the least permissions model:

    a basic example:

    --create a role for the envisioned process

    CREATE ROLE [FiveTablesReadOnly]

    --grant only the desired permissions for the five specific tables.

    GRANT SELECT ON dbo.BankOffices TO [FiveTablesReadOnly];

    GRANT SELECT ON dbo.BankInvoices TO [FiveTablesReadOnly];

    GRANT SELECT ON dbo.BankAccounts TO [FiveTablesReadOnly];

    GRANT SELECT ON dbo.BankLocations TO [FiveTablesReadOnly];

    GRANT SELECT ON dbo.BankDetails TO [FiveTablesReadOnly];

    --finally add our user(s) to the role:

    EXEC sp_addrolemember N'FiveTablesReadOnly', N'MyAppUser'

    Lowell

    --help us help you! If you post a question, make sure you include a CREATE TABLE... statement and INSERT INTO... statement into that table to give the volunteers here representative data. with your description of the problem, we can provide a tested, verifiable solution to your question! asking the question the right way gets you a tested answer the fastest way possible!