Re: Viewing object owner in SQL 2005 - ownership chaining
- From: Erland Sommarskog <esquel@xxxxxxxxxxxxx>
- Date: Sat, 15 Dec 2007 15:32:38 -0800
Dan Guzman (guzmanda@xxxxxxxxxxxxxxxxxxxxxxxxxxx) writes:
Erland brought up a good point that chaining is ultimately based on SID
rather than name. Not only can different database principal names have
the same SID (different user names, same login), it's not unusual to
have the same principal name with different SIDs (same user name,
different logins). A common example of the latter is when the database
owners are different ('dbo' user maps to different logins), which breaks
the cross-database ownership chain for dbo-owned objects. This is
confusing at first glance because all objects/schema are owned by 'dbo'
but it is really the login SID that is used for chaining.
Yes. A simplification of this is to say that the databases must have
the same owner - since it is very common that dbo owns all objects in
a database.
--
Erland Sommarskog, SQL Server MVP, esquel@xxxxxxxxxxxxx
Books Online for SQL Server 2005 at
http://www.microsoft.com/technet/prodtechnol/sql/2005/downloads/books.mspx
Books Online for SQL Server 2000 at
http://www.microsoft.com/sql/prodinfo/previousversions/books.mspx
.
- References:
- Re: Viewing object owner in SQL 2005 - ownership chaining
- From: Dan Guzman
- Re: Viewing object owner in SQL 2005 - ownership chaining
- From: Wayne Erfling
- Re: Viewing object owner in SQL 2005 - ownership chaining
- From: Dan Guzman
- Re: Viewing object owner in SQL 2005 - ownership chaining
- Prev by Date: Re: Viewing object owner in SQL 2005 - ownership chaining
- Next by Date: Re: SQL Server Mode
- Previous by thread: Re: Viewing object owner in SQL 2005 - ownership chaining
- Next by thread: Re: Setting column-level permissions
- Index(es):
Relevant Pages
|
|
