December 25, 2008 at 12:50 am
I want to do following :
Use can not alter or create table from UI designing.
They can alter/create table from running query in query analyzer but not directly from UI..
So, how can i prohibit to them?
December 25, 2008 at 8:26 am
Here's my first guess, and it's probably right:
when they are coming thru your UI, they are using a different login than when they connect vi SSMS....
if i connect with user "webdev" thru your UI, but connect as a user in BuiltIn\Administrators via SSMS/QA, you can see how my permissions would differ ;
Lowell
December 25, 2008 at 8:57 am
Paresh Prajapati (12/25/2008)
I want to do following :Use can not alter or create table from UI designing.
They can alter/create table from running query in query analyzer but not directly from UI..
So, how can i prohibit to them?
My gut feeling is that it is not possible to acheive this.
Resaon: A user cannot have different privileges with UI and Query Analyzer.
Regards,
Sam.
December 25, 2008 at 9:17 am
Is this for SQL Server 2005?
[font="Times New Roman"]-- RBarryYoung[/font], [font="Times New Roman"] (302)375-0451[/font] blog: MovingSQL.com, Twitter: @RBarryYoung[font="Arial Black"]
Proactive Performance Solutions, Inc. [/font][font="Verdana"] "Performance is our middle name."[/font]
December 25, 2008 at 10:13 pm
Yes it is sql server 2005.
I want user can change table structure from query anlyzer only by scripts.
December 26, 2008 at 1:39 am
see if you can achieve it using DDL trigger by checking application name trying to execute alter table.
December 26, 2008 at 2:18 am
Miron Berlin (12/26/2008)
see if you can achieve it using DDL trigger by checking application name trying to execute alter table.
How can I get appliocationName from DDL trigger?
Can u explain process by code or any?
December 26, 2008 at 11:13 am
Like this:
IF APP_NAME() = N'Microsoft SQL Server Management Studio'
BEGIN
ROLLBACK TRAN
RAISERROR 'You are not allowed to edit tables with the GUI', 15, 1
RETURN
END
[font="Times New Roman"]-- RBarryYoung[/font], [font="Times New Roman"] (302)375-0451[/font] blog: MovingSQL.com, Twitter: @RBarryYoung[font="Arial Black"]
Proactive Performance Solutions, Inc. [/font][font="Verdana"] "Performance is our middle name."[/font]
December 26, 2008 at 12:30 pm
I think you can try giving the user only read,write,DDl-Admin previlige this will
allow the user only to modify by query. if you add the View Definition permission on the
database level then the user will be able to modify from the UI aslo.
December 26, 2008 at 12:58 pm
I think that this can be done thru an Application role....Isnt it...
Regards,
[font="Verdana"]Sqlfrenzy[/font]
December 28, 2008 at 10:42 pm
glad we could help.
[font="Times New Roman"]-- RBarryYoung[/font], [font="Times New Roman"] (302)375-0451[/font] blog: MovingSQL.com, Twitter: @RBarryYoung[font="Arial Black"]
Proactive Performance Solutions, Inc. [/font][font="Verdana"] "Performance is our middle name."[/font]
Viewing 12 posts - 1 through 11 (of 11 total)
You must be logged in to reply to this topic. Login to reply