Hello there
I would like to give my users permission to insert/update/delete data
from/to tables and views
and i also need to give them full access to execute Store Procedures.
In order to do so i gave them on Dababase mode db_datareader and
db_datawriter roles.
This roles are giving them full access to insert/update and delete data, but
it doesn't give them access to execute Store procedures.
Which permission i sould give them wituout give them db_owner?Roy
GRANT EXECUTE ON storeprocedure TO username
"Roy Goldhammer" <roy@.hotmail.com> wrote in message
news:eNhG2daLHHA.4376@.TK2MSFTNGP03.phx.gbl...
> Hello there
> I would like to give my users permission to insert/update/delete data
> from/to tables and views
> and i also need to give them full access to execute Store Procedures.
> In order to do so i gave them on Dababase mode db_datareader and
> db_datawriter roles.
> This roles are giving them full access to insert/update and delete data,
> but it doesn't give them access to execute Store procedures.
> Which permission i sould give them wituout give them db_owner?
>|||Shalom Uri
This i've already know
I'm looking for role for this and not go spesific on each store procedure.
on the business i'm working on they are afraid to give the users db_owner's
permission which i know that it is not a problem.
"Uri Dimant" <urid@.iscar.co.il> wrote in message
news:O%23XjUuaLHHA.1280@.TK2MSFTNGP04.phx.gbl...
> Roy
> GRANT EXECUTE ON storeprocedure TO username
>
> "Roy Goldhammer" <roy@.hotmail.com> wrote in message
> news:eNhG2daLHHA.4376@.TK2MSFTNGP03.phx.gbl...
>|||Roy
Ok, so create a new role, add to the role users that you want to execute
sp. Go to the permission tab and click/check EXEC column for stored
procedure
Also , you can write script to grant an execute permission for all stored
procedure tospecific user. If you are interested I will post it out
"Roy Goldhammer" <roy@.hotmail.com> wrote in message
news:uW%23ObyaLHHA.4244@.TK2MSFTNGP04.phx.gbl...
> Shalom Uri
> This i've already know
> I'm looking for role for this and not go spesific on each store procedure.
> on the business i'm working on they are afraid to give the users
> db_owner's permission which i know that it is not a problem.
>
> "Uri Dimant" <urid@.iscar.co.il> wrote in message
> news:O%23XjUuaLHHA.1280@.TK2MSFTNGP04.phx.gbl...
>|||Roy
Be aware that if you have dymanic sql within a stored procedure you will
have to grant SELECT/UPDATE/INSERT/DELETE permission on underlaying table
as well
"Uri Dimant" <urid@.iscar.co.il> wrote in message
news:u$6IH4aLHHA.2456@.TK2MSFTNGP06.phx.gbl...
> Roy
> Ok, so create a new role, add to the role users that you want to execute
> sp. Go to the permission tab and click/check EXEC column for stored
> procedure
> Also , you can write script to grant an execute permission for all stored
> procedure tospecific user. If you are interested I will post it out
>
>
> "Roy Goldhammer" <roy@.hotmail.com> wrote in message
> news:uW%23ObyaLHHA.4244@.TK2MSFTNGP04.phx.gbl...
>|||Whell Uri
For this i have already gave db_datareader and db_datawriter role which
supply this need.
In fact before i deal there, it was as you said.
Now after i add db_datareader and db_datawriter this problem has gone and
there is full permission
it is seems to be some stupide of microsoft not to have role to execute
store procedures. it looks like the is reason for it. i'm wondering why
thanks
"Uri Dimant" <urid@.iscar.co.il> wrote in message
news:%23ed005aLHHA.3268@.TK2MSFTNGP04.phx.gbl...
> Roy
> Be aware that if you have dymanic sql within a stored procedure you will
> have to grant SELECT/UPDATE/INSERT/DELETE permission on underlaying table
> as well
>
> "Uri Dimant" <urid@.iscar.co.il> wrote in message
> news:u$6IH4aLHHA.2456@.TK2MSFTNGP06.phx.gbl...
>|||Roy Goldhammer (roy@.hotmail.com) writes:
> For this i have already gave db_datareader and db_datawriter role which
> supply this need.
> In fact before i deal there, it was as you said.
> Now after i add db_datareader and db_datawriter this problem has gone and
> there is full permission
> it is seems to be some stupide of microsoft not to have role to execute
> store procedures. it looks like the is reason for it. i'm wondering why
You can't do this in SQL 2000, as far as I know. But in SQL 2005,
permissions cascade, and you can say things like:
grant execute on database::yourdb to somerole
grant execute on schema::dbo to someotherrole
Erland Sommarskog, SQL Server MVP, esquel@.sommarskog.se
Books Online for SQL Server 2005 at
http://www.microsoft.com/technet/pr...oads/books.mspx
Books Online for SQL Server 2000 at
http://www.microsoft.com/sql/prodin...ions/books.mspx
Showing posts with label permission. Show all posts
Showing posts with label permission. Show all posts
Tuesday, March 6, 2012
Saturday, February 25, 2012
access rights
Hi,
I have many users and many databases in my Server 2000 installation. Each
user has only one database (with owner permission) and each database has one
owner. With mylittleadmin, I have no problems, each user can only see their
own database (which they have owner permisssion). But with web data
administrator, they can also see master and some other system databases
since they have guest permission. When one of these users connects the
server with enterprise management, things get worse. Users see ALL databases
eventhough they cannot reach them. I want users to see only their own
databases, not anobody elses. They cannot access the other databases, this
is ok but the other databases should not be listed as well. How can i solve
this?
Thanks.In Enterprise Manager you can't (in a supported way), they will always see
all the database names. This is being addressed in SQL2005's Management
Studio IIRC.
HTH
Jasper Smith (SQL Server MVP)
http://www.sqldbatips.com
I support PASS - the definitive, global
community for SQL Server professionals -
http://www.sqlpass.org
"Sfrnc Murat" <@.> wrote in message
news:%23RYBX2Z8EHA.3416@.TK2MSFTNGP09.phx.gbl...
> Hi,
> I have many users and many databases in my Server 2000 installation. Each
> user has only one database (with owner permission) and each database has
> one
> owner. With mylittleadmin, I have no problems, each user can only see
> their
> own database (which they have owner permisssion). But with web data
> administrator, they can also see master and some other system databases
> since they have guest permission. When one of these users connects the
> server with enterprise management, things get worse. Users see ALL
> databases
> eventhough they cannot reach them. I want users to see only their own
> databases, not anobody elses. They cannot access the other databases, this
> is ok but the other databases should not be listed as well. How can i
> solve
> this?
>
> Thanks.
>
I have many users and many databases in my Server 2000 installation. Each
user has only one database (with owner permission) and each database has one
owner. With mylittleadmin, I have no problems, each user can only see their
own database (which they have owner permisssion). But with web data
administrator, they can also see master and some other system databases
since they have guest permission. When one of these users connects the
server with enterprise management, things get worse. Users see ALL databases
eventhough they cannot reach them. I want users to see only their own
databases, not anobody elses. They cannot access the other databases, this
is ok but the other databases should not be listed as well. How can i solve
this?
Thanks.In Enterprise Manager you can't (in a supported way), they will always see
all the database names. This is being addressed in SQL2005's Management
Studio IIRC.
HTH
Jasper Smith (SQL Server MVP)
http://www.sqldbatips.com
I support PASS - the definitive, global
community for SQL Server professionals -
http://www.sqlpass.org
"Sfrnc Murat" <@.> wrote in message
news:%23RYBX2Z8EHA.3416@.TK2MSFTNGP09.phx.gbl...
> Hi,
> I have many users and many databases in my Server 2000 installation. Each
> user has only one database (with owner permission) and each database has
> one
> owner. With mylittleadmin, I have no problems, each user can only see
> their
> own database (which they have owner permisssion). But with web data
> administrator, they can also see master and some other system databases
> since they have guest permission. When one of these users connects the
> server with enterprise management, things get worse. Users see ALL
> databases
> eventhough they cannot reach them. I want users to see only their own
> databases, not anobody elses. They cannot access the other databases, this
> is ok but the other databases should not be listed as well. How can i
> solve
> this?
>
> Thanks.
>
Friday, February 24, 2012
Access permission to run SQL debugger
Hi All,
When I try to step into the stored procedure (for debugging) in from vb.net
environment, it gives the follwoing error.
"Security hasn't been set up correctly for SQL debugging on server
<servername>. SQL Debugging terminated. See SQL Debugginh documentation on
how to set it up correctly."
And
"User does not have permission to execute master.sp_sdidebug"
I was able to debug the stored yeasterday. After that, I had installed
windows automatic updates. I observed that I started geting the error after
the update.
Any help is greatly appreciated.
Thanks.
kdSee if this helps:
http://msdn.microsoft.com/library/d...>
ols_5cfm.asp
Vyas, MVP (SQL Server)
SQL Server Articles and Code Samples @. http://vyaskn.tripod.com/
"kd" <kd@.discussions.microsoft.com> wrote in message
news:E35AD11F-F140-4779-B8C8-CCB2D06F785A@.microsoft.com...
> Hi All,
> When I try to step into the stored procedure (for debugging) in from
vb.net
> environment, it gives the follwoing error.
> "Security hasn't been set up correctly for SQL debugging on server
> <servername>. SQL Debugging terminated. See SQL Debugginh documentation on
> how to set it up correctly."
> And
> "User does not have permission to execute master.sp_sdidebug"
> I was able to debug the stored yeasterday. After that, I had installed
> windows automatic updates. I observed that I started geting the error
after
> the update.
> Any help is greatly appreciated.
> Thanks.
> kd
When I try to step into the stored procedure (for debugging) in from vb.net
environment, it gives the follwoing error.
"Security hasn't been set up correctly for SQL debugging on server
<servername>. SQL Debugging terminated. See SQL Debugginh documentation on
how to set it up correctly."
And
"User does not have permission to execute master.sp_sdidebug"
I was able to debug the stored yeasterday. After that, I had installed
windows automatic updates. I observed that I started geting the error after
the update.
Any help is greatly appreciated.
Thanks.
kdSee if this helps:
http://msdn.microsoft.com/library/d...>
ols_5cfm.asp
Vyas, MVP (SQL Server)
SQL Server Articles and Code Samples @. http://vyaskn.tripod.com/
"kd" <kd@.discussions.microsoft.com> wrote in message
news:E35AD11F-F140-4779-B8C8-CCB2D06F785A@.microsoft.com...
> Hi All,
> When I try to step into the stored procedure (for debugging) in from
vb.net
> environment, it gives the follwoing error.
> "Security hasn't been set up correctly for SQL debugging on server
> <servername>. SQL Debugging terminated. See SQL Debugginh documentation on
> how to set it up correctly."
> And
> "User does not have permission to execute master.sp_sdidebug"
> I was able to debug the stored yeasterday. After that, I had installed
> windows automatic updates. I observed that I started geting the error
after
> the update.
> Any help is greatly appreciated.
> Thanks.
> kd
access permission
it is proberly not right place to post here, but i found there are many experts here. I learn a lot from here. I would like to ask.
I have a new window 2000 server.
my supervisor let me set Domain Admins to both of us, how to set up?
The domain admins is full control, also we have admin for server, what is different? Is that Domain admin has been add in the server, and just let me add two users to be a domanin admins? how to do that? Thanks for your help.Add Domain Admins group to local Administrators group.|||be honest, i don't know where is the domain admins and administrator, where is it? Also i create a share folder, that only the domain admins has full control, others are read only. Can you give me more detail? Thanks.|||I am honest, - right-mouse click on My Computer, select Manage, expand Local Users and Groups, go to Groups, double-click on Administrators, click on Add, type <domain>\Domain Admins, click OK.|||haha, you are very nice, I got it and add domain admins in the group, then how can i set my supervisor and i to be domain admins.|||rdjabarov, after i have domain admins, that means this is a group, i need to add two people(me and supervisor) to this group, is that correct? How can i add the two people? Another thing is that after i add the supervisor, he can have full control on his local machine? such as he can access file, modify and delete the file, is that mean, he also can log on the server using "Domain admins" as user name? Thanks for your help.
I have a new window 2000 server.
my supervisor let me set Domain Admins to both of us, how to set up?
The domain admins is full control, also we have admin for server, what is different? Is that Domain admin has been add in the server, and just let me add two users to be a domanin admins? how to do that? Thanks for your help.Add Domain Admins group to local Administrators group.|||be honest, i don't know where is the domain admins and administrator, where is it? Also i create a share folder, that only the domain admins has full control, others are read only. Can you give me more detail? Thanks.|||I am honest, - right-mouse click on My Computer, select Manage, expand Local Users and Groups, go to Groups, double-click on Administrators, click on Add, type <domain>\Domain Admins, click OK.|||haha, you are very nice, I got it and add domain admins in the group, then how can i set my supervisor and i to be domain admins.|||rdjabarov, after i have domain admins, that means this is a group, i need to add two people(me and supervisor) to this group, is that correct? How can i add the two people? Another thing is that after i add the supervisor, he can have full control on his local machine? such as he can access file, modify and delete the file, is that mean, he also can log on the server using "Domain admins" as user name? Thanks for your help.
Access Permission
Hi,
The permissions granted to user 'DC450P81\IUSR_DC450P81' are insufficient for performing this operation. (rsAccessDenied).
I got error when I try to access reports using http://localhost/reportserver.
Any Suggesstions.
Thanks,
prabu
take a look at
https://forums.microsoft.com/MSDN/ShowPost.aspx?PostID=445722&SiteID=1
Subscribe to:
Posts (Atom)