June 4, 2007 at 4:16 pm
I need to limit access to users so that managers can view and update only thier own team members data. Everyone else should only be able to view their own data only. I am new to SQL and have not had much experience with security. Any tips?
June 4, 2007 at 7:59 pm
This is more like an application way of securing the data than a dba action. However, you can use the solution here http://vyaskn.tripod.com/row_level_security_in_sql_server_databases.htm
Hope this helps.
June 5, 2007 at 9:10 am
Janet,
If the data used by different teams is in separate databases, you could use fixed database roles. Make managers members of db_datawriter and db_datareader and make their team members of db_datareader only.
If the data is in separate tables in the same database, you'd have to grant SELECT, UPDATE, INSERT, and DELETE permissions on each table.
If the data for different teams is mingled in the same tables, I think you're out of luck.
Greg
Greg
Viewing 3 posts - 1 through 2 (of 2 total)
You must be logged in to reply to this topic. Login to reply