One other idea is if you truly want all new databases to have this user with this permission per K. Brian Kelley's example, you can create this user and permission grant in model db. Then all new databases will have this by default.