Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Security issue in SQL: How to hide  System Databases from certain users

Posted on 2010-09-06
5
Medium Priority
?
403 Views
Last Modified: 2012-06-27
I am using SQL server 2008 . For securit reasons, I want  to restrict certain users' access  to a single database so that they can only see the ABCDatabase in Management studio once logged in.

And to achieve that:

1- I have created a new user.

2- Denied View all database rights to that user.

3-Set that user as Owner of ABCDatabase


Now on login that user cannot see other databases but is still able to see the system databases.

How can i hide those system databases from that user?

0
Comment
Question by:davnhm
  • 3
  • 2
5 Comments
 
LVL 143

Expert Comment

by:Guy Hengel [angelIII / a3]
ID: 33610024
0
 
LVL 143

Expert Comment

by:Guy Hengel [angelIII / a3]
ID: 33610030
>but is still able to see the system databases.
sorry...
but you cannot hide those. they contain the meta-data that the user will need to query anyhow to see permissions etc .
0
 

Author Comment

by:davnhm
ID: 33610255
Thanks Angelll, but I am not entirely following you. What I need to do is give the user limited access to one database. I also want to remove any risk of them being able to access further databases. That is why I did not want them to see the system/security databases.

Is it possible to give such access to a single database without compromising security for the rest?
0
 
LVL 143

Accepted Solution

by:
Guy Hengel [angelIII / a3] earned 2000 total points
ID: 33610318
>That is why I did not want them to see the system/security databases.
you cannot do that.

>Is it possible to give such access to a single database without compromising security for the rest?
seing the system/security db not comprimise anything else, as with limited permissions, the use cannot "do" anything more than seeing eventually that other databases existed: the user won't be able to connect to those databases, given that the login has not been mapped to those other databases, and does not have server role that would allow him to do so anyhow (aka sysadm)
0
 

Author Closing Comment

by:davnhm
ID: 33610363
Very helpful.
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When trying to connect from SSMS v17.x to a SQL Server Integration Services 2016 instance or previous version, you get the error “Connecting to the Integration Services service on the computer failed with the following error: 'The specified service …
This shares a stored procedure to retrieve permissions for a given user on the current database or across all databases on a server.
Familiarize people with the process of utilizing SQL Server functions from within Microsoft Access. Microsoft Access is a very powerful client/server development tool. One of the SQL Server objects that you can interact with from within Microsoft Ac…
Viewers will learn how to use the INSERT statement to insert data into their tables. It will also introduce the NULL statement, to show them what happens when no value is giving for any given column.
Suggested Courses

579 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question