October 14, 2009 at 2:56 am
Hi,
Is it possible to a login that can only execute stored procedures? We have a third party Java process that needs to access certain data on our database. It currently uses a dynamic sql statement passed in which is held within the code.
However, as part of our security audit, we need to stop this. The user login only has read access at the moment, but we want to take that away and funnel the data back through SP's which will have many other benefits on top of the security restrictions.
We running 2005.
Thanks in advance.
Tom
October 14, 2009 at 3:08 am
you can create a database role and just assign it execute permissions on the sp's that you want the login to execute. add the login/user to the database role.
--------------------------------------------------------------------------------------
[highlight]Recommended Articles on How to help us help you and[/highlight]
[highlight]solve commonly asked questions[/highlight]
Forum Etiquette: How to post data/code on a forum to get the best help by Jeff Moden[/url]
Managing Transaction Logs by Gail Shaw[/url]
How to post Performance problems by Gail Shaw[/url]
Help, my database is corrupt. Now what? by Gail Shaw[/url]
October 14, 2009 at 4:58 am
Thanks a lot, managed to set up the user.
On a separate note, is there anywhere that I can see all the explicit permissions and what they allow the user to do?
Most of them are pretty obvious, but there are a few I'm unsure of. I've search the BOL and there is no reference to it!
Viewing 3 posts - 1 through 2 (of 2 total)
You must be logged in to reply to this topic. Login to reply