Re: Grant v Deny
- From: "AHartman" <Hoosbruin@xxxxxxxxxxxx>
- Date: Fri, 20 Jun 2008 22:51:41 -0400
Thanks I'll try that approach.
"Erland Sommarskog" <esquel@xxxxxxxxxxxxx> wrote in message news:Xns9AC47BCEEA9CYazorman@xxxxxxxxxxxx
AHartman (Hoosbruin@xxxxxxxxxxxx) writes:I just created 3 sensitive data tables within my database. I have a
Group that conatins multiple people and only 5 of those can have access
to these tables new tables. The rest of the people in the group need
Read access to all of the other tables within this database. These 5
people also need to be able to Read the reaming tables also.
You could put these three tables in a schema on their own. Then create
a group of the five. Then you can do:
GRANT SELECT ON SCHEMA::dbo TO AllUsers
GRANT SELECT ON SCHEMA::secretes TO GroupOfFive
AllUsers would be a role with all users in the database.
--
Erland Sommarskog, SQL Server MVP, esquel@xxxxxxxxxxxxx
Books Online for SQL Server 2005 at
http://www.microsoft.com/technet/prodtechnol/sql/2005/downloads/books.mspx
Books Online for SQL Server 2000 at
http://www.microsoft.com/sql/prodinfo/previousversions/books.mspx
.
- Follow-Ups:
- Re: Grant v Deny
- From: AHartman
- Re: Grant v Deny
- References:
- Grant v Deny
- From: AHartman
- Re: Grant v Deny
- From: Erland Sommarskog
- Grant v Deny
- Prev by Date: Re: Allow users to only see their mapped DBs
- Next by Date: Re: Allow users to only see their mapped DBs
- Previous by thread: Re: Grant v Deny
- Next by thread: Re: Grant v Deny
- Index(es):
Relevant Pages
|
