SQL server accessibility

Hi there,

I want to know what functions can a user perform if he or she is given access to SQL server via the server management server tool for SQL verses he or she remoting in to the server.

We have a user who would like to perform tasks on the sql server but we do not want to give him access to remote RDP to the server. What can I make sure he has to still perform his tasks?

Thanks,
LVL 4
Habib ZakariaNetwork Solutions ArchitectAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Ephraim WangoyaCommented:
If he uses  RDP then he has all the functionality possible
0
Guy Hengel [angelIII / a3]Billing EngineerCommented:
granting permissions to the SQL Login does not grant permissions to do RDP on the windows box.

having access via RDP on the windows box does not automatically grant all permissions to the person, unless the windows login used by the person has windows login permission in sql server granted.

in short: only the permissions granted to the sql logins the person can use (either directly as sql non-windows based logins or "indirectly" via the windows based logins) are available to the person. it does not make a difference if the person can RDP into the machine or not.
0
Habib ZakariaNetwork Solutions ArchitectAuthor Commented:
The question I asked was not meant for discussion on the user rights. I want to know if the user has the SQL Management server console installed on his PC - Can he perform the following tasks like creating a database, create raster databases, create accounts.

Please let me know as this is important for me to give a reply soon.
0
Cloud Class® Course: Certified Penetration Testing

This CPTE Certified Penetration Testing Engineer course covers everything you need to know about becoming a Certified Penetration Testing Engineer. Career Path: Professional roles include Ethical Hackers, Security Consultants, System Administrators, and Chief Security Officers.

Ephraim WangoyaCommented:
The answer is no. He has to use the management tools on the remote workstation he is connected to
0
Anthony PerkinsCommented:
>>Can he perform the following tasks like creating a database, create raster databases, create accounts. <<
It really depends what permissions on SQL Server you or the DBA have given the user.  So the answer is maybe or maybe not.
0
Habib ZakariaNetwork Solutions ArchitectAuthor Commented:
What type of permission he needs to do those functions like creating database?
0
Anthony PerkinsCommented:
In order for the user to be able to create a database they need to belong to the sysadmin server role or be given explicit permissions to CREATE DATABASE with something like this:
GRANT CREATE DATABASE TO YourUserNameGoesHere
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Habib ZakariaNetwork Solutions ArchitectAuthor Commented:
OK thank acperkins.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft SQL Server 2008

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.