Post reply

Server Roles in SQL 2000

  • December 6, 2007 at 8:08 am

    #70523

    We want to allow certain users to change sql login passwords, but not be able to create or delete sql logins. Is it possible to create a server role, grant that role permissions to change login passwords, and then add users to this role?

    Ian Harris

  • December 6, 2007 at 12:33 pm

    #757829

    You could try writing a stored procedure that updates the password column in master.dbo.sysxlogins and giving the users permission to execute it. Look at master.dbo.sp_password for the update code. You can't simply grant execute permission to sp_password because it checks to see if the user executing it is a member of the securityadmin server role.

    I've never tried this so I don't know if there are other restrictions that you'd have to work around.

    Greg

    Greg

Viewing 2 posts - 1 through 1 (of 1 total)

You must be logged in to reply to this topic. Login to reply