We have intranet sites connecting to sql server databases as well as Microsoft Access databases via ODBC. I was asked to setup the logins so that if someone had Enterprise Manager installed they could not access anything.
I was given some vague instructions that talk about adding the user to the master database, adding a Role that only has Select access to sysdatabases, sysconfigures and syscharsets and assign the username (that the odbc and websites use) to this roll. Of course in the database I will need to grant access to whatever views/stored procedures they will be using.
I can not find anything online talking about needing to add to the Master database and trying to follow the instructions I was given is not working.
Any information/tips would be greatly appreciated.