RE: Keeping User From Deleting Table Records
- From: Linchi Shea <LinchiShea@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Fri, 11 Sep 2009 10:07:01 -0700
If the user is connecting to the SQL instace as sa, the very first thing to
do is to remove sa and have him connecting with either a Windows account or
SQL login, and grant only read permissions to that user. To allow him to
select from any table in a database, you can put his user account in the
db_datareader role in that database.
Linchi
"meangene" wrote:
Using MSSQL Server 2000, SP4. My supv uses Access 2003 to run queries off.
tables in SQL and connects via ODBC using "sa". If he only needed access to a
few specific tables then I would create views for him; however, he says he
needs access to virtually all tables. Recently he inadventantly deleted many
records out of a table via Access. What security can I set up in SQL 2000
that will allow him to run queries via Access but keep him from deleting
records. I have tested with a test Windows account (network OS is Win2003
Server, R2) with odbc set to windows logon and in SQL added the user to
Security/Logins with no server role and added them as a User in the db with
db_denydatawriter selected and even went so far as to click on Permission and
put the big red X in delete column. However, when I login to domain with test
user account and use Access to run a query, I can still delete records.
- Follow-Ups:
- RE: Keeping User From Deleting Table Records
- From: meangene
- RE: Keeping User From Deleting Table Records
- References:
- Keeping User From Deleting Table Records
- From: meangene
- Keeping User From Deleting Table Records
- Prev by Date: Keeping User From Deleting Table Records
- Next by Date: RE: Keeping User From Deleting Table Records
- Previous by thread: Keeping User From Deleting Table Records
- Next by thread: RE: Keeping User From Deleting Table Records
- Index(es):
Relevant Pages
|
