January 13, 2011 at 7:48 am
I have a group with bunch of users who had read / write access on the database.(map to - db_datawriter, db_datareader roles).
There is a requirement where I need to give them rights to CREATE PROC / ALTER PROC at the same time they should not have any rights to alter any table or other objects.
In SQL server we can use GRANT to give the rights to create /alter procedure, also we need to GRANT the alter permission on same schema which is shared between other objects.
How can i achieve this?
Abhijit - http://abhijitmore.wordpress.com
January 19, 2011 at 2:10 am
I am still struggling with the suggestions.
Abhijit - http://abhijitmore.wordpress.com
January 19, 2011 at 2:21 am
You can think of using the "EXECUTE AS" option. In this scenario, the stored procedure will be executed after impersonating as whatever user you mention.
Hence, you can have a user who has rights to modify objects necessary. Whenever applications connect to the server, they login as a different user, who does not have any rights to update these objects.
Thanks & Regards,
Nakul Vachhrajani.
http://nakulvachhrajani.com
Follow me on
Twitter: @sqltwins
Viewing 3 posts - 1 through 2 (of 2 total)
You must be logged in to reply to this topic. Login to reply