SQL Server Performance

  • Home
  • Articles
  • Forums
  • Tips
  • Training
  • FAQ's
  • Blogs
  • Software
  • Books
  • About Us
RSS Feeds
Sign in | Join


Article Topics

All Articles
Performance Tuning
Audit
Business Intelligence
Clustering
Reporting Services
SQL Azure
Developer
General DBA
ASP.NET / ADO.NET
SQL Azure

USEFUL SITES :

ASP.NET Tutorials
Windows and SQL Azure Tutorials
Cloud Hosting Magazine
SharePoint Tutorials
Windows Server Help

Write for Us

Share your SQL Server knowledge with others and raise your profile in the community More...
Latest Articles

A High Level Comparison Between Oracle and SQL Server - Part ...
A High Level Comparison Between Oracle and SQL Server - Part ...
A High Level Comparison Between Oracle and SQL Server - Part ...
A High Level Comparison Between Oracle and SQL Server

More     
 
Latest FAQ's

Add Node to A SQL Server failover Cluster failed with invalid ...
SQL Server Destination remote server error
Setting Up Data And Log Files For SQL Server
Will Check Constraints Improve Database Performance?

More     
   
Latest Software Reviews

dbForge Review
Spotlight on ApexSQL Diff - Server-based database comparison tool ...
Spotlight on ApexSQL Data Diff - Server-based database comparison tool ...
Spotlight on ApexSQL Doc 2008

More     
articles >> general dba >> Overview of the SQL Server Security Model ...

Overview of the SQL Server Security Model and Security Best Practices

By : Vyas Kondreddi
May 05, 2002

Page 2 / 4

There are three types of roles in SQL Server 7.0 and 2000:

  • Fixed server roles
  • Fixed database roles
  • Application roles

 

Fixed Server Roles

Fixed server roles are server-wide roles. Logins can be added to these roles to gain the associated administrative permissions of the role. Fixed server roles cannot be altered and new server roles cannot be created. Here are the fixed server roles and their associated permissions in SQL Server 2000:

Fixed Server Role Descriptions

  • sysadmin: Can perform any activity in SQL Server
  • serveradmin: Can set server-wide configuration options, shut down the server
  • setupadmin: Can manage linked servers and startup procedures
  • securityadmin: Can manage logins and CREATE DATABASE permissions, also read error logs and change passwords
  • processadmin: Can manage processes running in SQL Server
  • dbcreator: Can create, alter, and drop databases
  • diskadmin: Can manage disk files
  • bulkadmin: Can execute BULK INSERT statements



Here is a list of stored procedures that are helpful in managing fixed server roles:

  • sp_addsrvrolemember: Adds a login as a member of a fixed server role
  • sp_dropsrvrolemember: Removes an SQL Server login, Windows user or group from a fixed server role
  • sp_helpsrvrole: Returns a list of the fixed server roles
  • sp_helpsrvrolemember: Returns information about the members of fixed server roles
  • sp_srvrolepermission: Returns the permissions applied to a fixed server role

 

Fixed Database Roles

Each database has a set of fixed database roles, to which database users can be added. These fixed database roles are unique within the database. While the permissions of fixed database roles cannot be altered, new database roles can be created. Here are the fixed database roles and their associated permissions in SQL Server 2000:


Fixed Database Role Description

  • db_owner: Has all permissions in the database
  • db_accessadmin: Can add or remove user IDs
  • db_securityadmin: Can manage all permissions, object ownerships, roles and role memberships
  • db_ddladmin: Can issue ALL DDL, but cannot issue GRANT, REVOKE, or DENY statements
  • db_backupoperator: Can issue DBCC, CHECKPOINT, and BACKUP statements
  • db_datareader: Can select all data from any user table in the database
  • db_datawriter: Can modify any data in any user table in the database
  • db_denydatareader: Cannot select any data from any user table in the database
  • db_denydatawriter: Cannot modify any data in any user table in the database


<< Prev Page     Next Page>>    







C# Help and Tutorials | PHP MySQL Tutorial | Sharepoint Tutorial | Azure Tutorial | Cloud Hosting Magazine | ASP.NET Tutorials | Windows Server Help | Windows Phone Pro | Silverlight Ace | Visual Studio Tutorials | Home | Peformance Articles | Audit Articles | Business Intelligence Articles | Clustering Articles | Developer Articles | Reporting Services Articles | DBA Articles | ASP.NET / ADO.NET Articles | SQL Server Training Videos | DBA FAQ's | Developer Peformance FAQ's | DBA Peformance FAQ's | Developer FAQ's | Clustering FAQ's | Error Messages | Audit Tool Reviews | Backup Tool Reviews | Coding Tool Reviews | Compare Tool Reviews | Documentation Tool Reviews | Design Tool Reviews | Monitoring Tool Reviews | Log Tool Reviews | Reporting Tool Reviews | Clustering Tool Reviews | Security Tool Reviews | Change Management Tool Reviews | Remote Access Tool Reviews | Book Reviews | Security Tool Reviews | ADO.NET / ASP.NET | Administration | Analysis/OLAP Services | Application Development | Configuration | Components | ETL | Hardware | High Availability | Hints | Index | Misc | Operating Systems | Performance Tuning | Replication | T-SQL | Views


              © 2010 Jude O'Kelly. All rights reserved