Granting permission to Execute SP but still only RO access to DB -- in SQL 2000 Standard

Question

Granting permission to Execute SP but still only RO access to DB -- in SQL 2000 Standard

samalex

SSCertifiable

Points: 5429
More actions
October 22, 2008 at 10:17 am

#103609

Hi,
On our SQL 2000 Standard Edition server I need to setup some users to have Read Only access to the database yet have Execute permissions to run stored procedures. I ran across Brian Kelly's article[/url] that shows exactly this, but it never said for sure whether the db_execute role would have Read Only or Write access to the database for users who are given db_datareader and db_execute roles. I need users who are setup under db_datareader and db_execute roles to be able to run SP's but not make changes to the DB... so if a SP did an update or delete it would fail.
Is this possible?
Thanks --
Sam Alex

Viewing 2 posts - 1 through 1 (of 1 total)

You must be logged in to reply to this topic. Login to reply

Steve Jones - SSC Editor SSC Guru Points: 736455 More actions · Answer 1

You can setup a role that has deny permission for insert/update/delete and then add users to this along with the other roles. That should cause those SPs that change data to fail.