June 5, 2002 at 2:02 pm
Hello, I can not understand the use of Deny and Revoke, what is the difference?
June 5, 2002 at 2:08 pm
Revoke is used to remove a permission previously granted to a user or a role. That means a user may still be able to access the table based on permissions from another role or granted directly to the login. Deny means that a login can not access the resource regardless of membership in any other role or any permission granted to the login. For example, you might grant/revoke permissions for HR people to access a table containing salaries, but you would deny permissions to everyone in the 'average users' group. Important to make sure that the deny doesnt override the access you're trying to grant to HR.
Andy
Viewing 2 posts - 1 through 1 (of 1 total)
You must be logged in to reply to this topic. Login to reply