Solved

Access in sql

Posted on 2013-06-11
8
191 Views
Last Modified: 2013-07-10
I need to give db_owner access to one person present in the AD group which has db_reader access in sql server.Is this is possible?

And I need to deny access to one person in the ad group which has db_owner access.
0
Comment
  • 3
  • 3
  • 2
8 Comments
 
LVL 9

Expert Comment

by:MattSQL
ID: 39239884
Not within SQL Server unfortunately. SQL Server can determine whether a user is a member of the group or not - but all permissions/privileges are mapped at a SQL Server login and user level. So if you're using a group as a SQL Server login then it's all or nothing I'm afraid.

You'll need to break open the group at an AD level.
0
 
LVL 23

Expert Comment

by:Racim BOUDJAKDJI
ID: 39239931
Why don't you simply create an group for OWNERS and a group for READERS and map them to two separate logins.  Then you can simply put whoever you want anywhere you want depending on what credentials you want to assign.
0
 
LVL 5

Author Comment

by:VIVEKANANDHAN_PERIASAMY
ID: 39240683
No experts, When i did my SQL admin certification, somewhere i remeber it's possible.But not sure.
Atleast i beleieve we can restrict the access.

>>And I need to deny access to one person in the ad group which has db_owner access<<
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 23

Expert Comment

by:Racim BOUDJAKDJI
ID: 39240701
No experts, When i did my SQL admin certification, somewhere i remeber it's possible.But not sure.
Atleast i beleieve we can restrict the access.

Perhaps but that would be a security hack.  

I advise you to do as MattSQL and I suggested to map credential to groups by breaking them down into OWNERS and READERS then assign users to them in an additive way.  The only thing left to do then is to add users to either of these groups based on the level of credential you want to give them: it will be much easier to update than your current policy scheme.

Hope this helps.
0
 
LVL 5

Author Comment

by:VIVEKANANDHAN_PERIASAMY
ID: 39242069
Hello Racimo,

I knew about the alter method.Just eager to know if there is way to do it.
0
 
LVL 9

Accepted Solution

by:
MattSQL earned 500 total points
ID: 39242720
I had a client who required the same sort of security setup and I spent some time investigating and testing various options. Basically the granularity of SQL Security principals stops at SQL users. If you want to configure separate permission levels - you need separate users/logins.
0
 
LVL 5

Author Comment

by:VIVEKANANDHAN_PERIASAMY
ID: 39300765
Need some more tim to investigate
0
 
LVL 9

Expert Comment

by:MattSQL
ID: 39316195
Has this been resolved?
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article shows gives you an overview on SQL Server 2016 row level security. You will also get to know the usages of row-level-security and how it works
It’s been over a month into 2017, and there is already a sophisticated Gmail phishing email making it rounds. New techniques and tactics, have given hackers a way to authentically impersonate your contacts.How it Works The attack works by targeti…
In Microsoft Access, learn how to use Dlookup and other domain aggregate functions and one method of specifying a string value within a string. Specify the first argument, which is the expression to be returned: Specify the second argument, which …
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

778 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question