March 5, 2012 at 2:29 pm
I am trying to create a minimum privilege (read only) role which can select from a few tables, through ODBC for an application. When I do this though and test the ODBC using EXCEL, I can see several sys views and also dm views and master db objects.
How can I tie all of these down without individually 'revoking' the select access to these on the role?
Can I create a role which by default will do this? See only those tables that I allow it to, and NOTHING else.
Thanks in advance.
sk
March 6, 2012 at 7:56 am
By default all users created are added to the PUBLIC role. This is because there is a need for some access to metadata for all users. There are several DMV's that all users can see, but internally the results are filtered to only show information about that users connections. For example, sys.dm_exec_connections will only show the connections for that session.
Jack Corbett
Consultant - Straight Path Solutions
Check out these links on how to get faster and more accurate answers:
Forum Etiquette: How to post data/code on a forum to get the best help
Need an Answer? Actually, No ... You Need a Question
Viewing 2 posts - 1 through 1 (of 1 total)
You must be logged in to reply to this topic. Login to reply