SQL Server Forums
Profile | Register | Active Topics | Members | Search | Forum FAQ
 
Register Now and get your question answered!
Username:
Password:
Save Password
Forgot your Password?

 All Forums
 SQL Server 2012 Forums
 SQL Server Administration (2012)
 unnecessary permission
 New Topic  Reply to Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

noamg
Posting Yak Master

Israel
215 Posts

Posted - 10/01/2013 :  06:42:17  Show Profile  Reply with Quote
Hi,
for security reasons, I have to remove the un-used permission.
How I can know what to revoke ?


Noam Graizer

James K
Flowing Fount of Yak Knowledge

3559 Posts

Posted - 10/01/2013 :  09:37:44  Show Profile  Reply with Quote
You have to first define what permissions are required for each login/user/group. Then remove any unnecessary permissions.

My approach usually is to grant no permissions to anyone, and then add permissions only as needed. Most end-user logins/groups would only have public role at the server level and access to only the databases they need. In those databases, they would be granted access (usually execute permissions) to the stored procedures they need. You can create roles and grant them membership in those roles to manage the permissions for a group of users.
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
SQL Server Forums © 2000-2009 SQLTeam Publishing, LLC Go To Top Of Page
This page was generated in 0.05 seconds. Powered By: Snitz Forums 2000