In a secure database, user "admin" is a member of "users" group only. "Admin" and "users" have no permissions for any new objects (new tables/queries, etc.). I thought this would prevent the creation of new objects by "admin". This is not the case. What am I missing?