You're right. I want my developers to be able to develop sprocs that may select, [insert, update, create temp tables]but altering system & dbo tables is off limits. How can I give them the flexibility they need and the security I need?
By the way I have created roles for them but am still unsure how to inforce it.
You know after actually writing it out I think i know where the problem is...
I'll update you shortly.
Thanks,
Christine