Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
sunsanvin
Master Smack Fu Yak Hacker
1274 Posts |
 Posted - 2008-07-09 : 06:12:27
|
| Dear All,i'm going to implement a few things with my new organization that i want to put three levels of users1) basic_user ----------- this user can select, insert and update data on all databases (so i'm going to give him read and write permissions).2) middle_user ---------- this user can create and alter objects.only leaders in the team will be having the password (so i'm going to give him dbo, read and write)3) high_user -------------- this is nothing but sa, and i'd like to keep the password with managers only.(sysadmin role i'm giving)please guide me and correcr me where ever i'm wrongArnavEven you learn 1%, Learn it with 100% confidence. |
|
|
RickD
Slow But Sure Yak Herding Master
3608 Posts |
Posted - 2008-07-09 : 06:33:28
|
| You should never give anyone but DBAs sa rights. |
 |
|
|
sunsanvin
Master Smack Fu Yak Hacker
1274 Posts |
Posted - 2008-07-09 : 08:39:05
|
| for the basic and middle user.....my selection is correct?i mean providing dbo is enough?ArnavEven you learn 1%, Learn it with 100% confidence. |
|
|
|
sodeep
Master Smack Fu Yak Hacker
7174 Posts |
Posted - 2008-07-09 : 09:48:14
|
| In production server, you should restrict as much you can . Even Dbowner ,Insert,update looks high permission to me. |
|
|
|
|
|
|
user creation and maintenance