Re: sql admin rights question
From: Sue Hoegemeier (Sue_H_at_nomail.please)
Date: Mon, 11 Apr 2005 18:51:09 -0600
If they need admin rights to the entire server then they
need to be a member of the sysadmin role. Any Deny does not
apply to a sysadmin. Permissions are cumulative with deny
taking precedence but a sysadmin bypasses all of this.
On Mon, 11 Apr 2005 18:09:35 -0400, "Keith G Hicks"
>Yes. This is very helpful. I just found "Denying Permissions" in B.O.L.
>"Joseph MCAD" <email@example.com> wrote in message
>April 11, 2005
> Yes. You can grant the user the DB_Admin (hopefully that is the correct
>admin role) role and then goto the specific database and then put a Deny ACE
>in for the user. This will grant the user overall admin rights, but since
>Deny ACEs have precedence over allows, the user will not be able to access
>your database. I hope this helps! :-)
> Joseph MCAD