sqlfriends (8/8/2014)
But my question is why bother to grant all these permssions, but just grant this account db_owner role. Becaue it pretty much need all the permissions: read, write, and excute.
And permission to change the schema, drop tables, add users, add permissions, drop the database. None of which your application probably needs.
Principle of Lease Privilege. An app's login should have the minimum permissions it needs to do it's job and nothing else.
Gail Shaw
Microsoft Certified Master: SQL Server, MVP, M.Sc (Comp Sci)
SQL In The Wild: Discussions on DB performance with occasional diversions into recoverability