I have a little problem.
I'm trying to configure permissions on sql server 2000. I have a user
"intranet" wich has permissions on a couple of tables and a stored
procedures. When I set the permissions from "public" (usergroup? can't find
it) to deny, intranet can't acces the tables. When I set no permissions on
public, intranet can acces the tables en SP's. Can somebody explain how it
comes that intranet can's acces these tables while the users permissions are
set to permit?
Kind regards,
Bert
(when replying to me please remove the antispam-part in the emailaddress)Hello, Janssen!
You shouldn't really be granting permissions to public unless you intend
everybody in the DB to have those permissions.
--
Allan Mitchell (Microsoft SQL Server MVP)
MCSE,MCDBA
www.SQLDTS.com
I support PASS - the definitive, global community
for SQL Server professionals - http://www.sqlpass.org
: Kind regards,
: Bert
-- Microsoft Outlook Express 5.50.4133.2400|||Every user is by default member of the role (that is what it's called in SQL
Server) 'public'. The SQL Server permissions system works in such a way that
you only have permission on a table, view or stored procedure if you have
been granted the permission directly or via one of the roles you are a
member of, _and_ it is not denied to you or one of the roles you are a
member of.
In your situation that means that members of the public role do not have
permissions to any tables if there are no permisions explicitly set (unless
they are granted to them directly or via another role), but denying a
permission to the public role will deny that permission to anyone who is a
member of the public role (= all the users in the database), regardless of
the permissions they have directly or via another role.
hth
--
Jacco Schalkwijk MCDBA, MCSD, MCSE
Database Administrator
Eurostop Ltd.
"Janssen" <legedoosantispam@.hotmail.com> wrote in message
news:be1dqh$6783$1@.ID-200327.news.dfncis.de...
> I have a little problem.
> I'm trying to configure permissions on sql server 2000. I have a user
> "intranet" wich has permissions on a couple of tables and a stored
> procedures. When I set the permissions from "public" (usergroup? can't
find
> it) to deny, intranet can't acces the tables. When I set no permissions on
> public, intranet can acces the tables en SP's. Can somebody explain how it
> comes that intranet can's acces these tables while the users permissions
are
> set to permit?
>
> Kind regards,
> Bert
> (when replying to me please remove the antispam-part in the emailaddress)
>
>
>|||Thanx!
"Jacco Schalkwijk" wrote
> Every user is by default member of the role (that is what it's called in
SQL
> Server) 'public'. The SQL Server permissions system works in such a way
that
> you only have permission on a table, view or stored procedure if you have
> been granted the permission directly or via one of the roles you are a
> member of, _and_ it is not denied to you or one of the roles you are a
> member of.
> In your situation that means that members of the public role do not have
> permissions to any tables if there are no permisions explicitly set
(unless
> they are granted to them directly or via another role), but denying a
> permission to the public role will deny that permission to anyone who is a
> member of the public role (= all the users in the database), regardless of
> the permissions they have directly or via another role.
> hth
> --
> Jacco Schalkwijk MCDBA, MCSD, MCSE
> Database Administrator
> Eurostop Ltd.
>
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment