I need to create a SQL user account (from a domain account) that has full access to do anything they want to new databases. They should be able to create, update, add, delete, backup, etc... any database as long as they are not explicitly denied access. I want to be able to selectively deny ALL access to certain databases. Is this possible? If so, how?