September 22, 2009 at 2:56 am
I have been reading up on the best way to do group permissions in SQL Server 2005.
I have a couple of apps that have MANY users with the same permissions. I added them all as users to the instance and then created a DB Group, gave the group the appropriate permissions and then added the users to the group. Is this the best way to handle this?? Is there a way to create a local windows group on the server, add all of the users to it and then grant the group permissions that way? or do the users all have to be added individually to the instance before they can be added to a new DB group?
September 22, 2009 at 3:23 am
If you see from the management prospective and incase you SQL in on mixed mode authentication, you can approach the windows user group.
In my environment, I have clubbed all users who just need read permission and they all are windows users to a windows user group called DBReaders and just added this group to my sql server and provided with datareader permission to respective databases.
However, some people find it easier with the other way,
September 22, 2009 at 11:53 am
It sounds like you have done it the right way.
Yes, you could create a windows group either on the SQL Server Server or on the domain and use the windows group. I would only recommend doing it using Domain Groups though, if you choose to make that change.
Jack Corbett
Consultant - Straight Path Solutions
Check out these links on how to get faster and more accurate answers:
Forum Etiquette: How to post data/code on a forum to get the best help
Need an Answer? Actually, No ... You Need a Question
Viewing 3 posts - 1 through 2 (of 2 total)
You must be logged in to reply to this topic. Login to reply