Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
sunnyjassal
Starting Member
28 Posts |
 Posted - 2004-05-21 : 12:02:12
|
| Hello,First of all this messageboard is great. I am a beginner in Administration for SQL Server 2000, so please bare with me.Lets say I have 5 databases. Each for a different company. What I want to do is I want to have 5 different users that do not have any access to others database. But they should have all right to their own databse .. for example create a user run stored procs ...I got up to the part of the user not being able to access the other database but this user cannot create a log in .. in that database.basically how can i set up a user so he/she has access to everything in their own database but no where else.Also, when I was testing this in Enterprise Manager a user was able to see the other databases but was not able to access the tables..not being able to access is good but...is there anyway of the user not be able to see the database names and tables of other users?Thanks for your help in advance |
|
|
tkizer
Almighty SQL Goddess
38200 Posts |
Posted - 2004-05-21 : 12:22:39
|
| In order for a user to do everything in a database, you'll need to assign the db_owner role.No you can not prevent a user from "seeing" other databases even if he/she doesn't have access to it. In order for the user to be able to add logins, you'll need to assign securityadmin fixed server role, but that would allow the user to create logins in any database though. So you'll probably not want to do this.Tara |
 |
|
|
sunnyjassal
Starting Member
28 Posts |
Posted - 2004-05-21 : 13:45:22
|
| thank you for the feedback. |
|
|
|
derrickleggett
Pointy Haired Yak DBA
4184 Posts |
Posted - 2004-05-21 : 15:13:47
|
| If you're doing this for a webhosting company, set up a request application. They can enter the user and database role. You just set up an application that cycles through it every so often and marks it as complete.MeanOldDBAderrickleggett@hotmail.comWhen life gives you a lemon, fire the DBA. |
|
|
|
|
|
|
Access for log ins