Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
Rambus
Starting Member
1 Post |
 Posted - 2011-11-07 : 10:37:38
|
| Hello,I'm interested in running a SQL Server 2008 instance on a dual purpose machine. The database would be shared between the local machine and several others through LAN. We want to have a non-administrator logged in on the main server machine, who cannot access the database administration tools. He or she will only be able to interface with the local database through our tools. This is required as some data is sensitive, and should not be accessed (or altered) by all users of this machine.We would also like a second account (system administrator) who had access to the SQL administration tools.The goal is to not require a separate (secured) machine to run the database. I'm finding the literature on this a little confusing, and was hoping you could point out any issues with this idea. If you have any recommended readings I would also be happy to look at those.Thank you-Mark |
|
|
vikki.seth
Yak Posting Veteran
66 Posts |
Posted - 2011-11-08 : 09:21:07
|
| Access to tools should not be a cause of concern. Permissions to use those tools is important in your case. You'll need to grant specific rights to the user. For example if you want the user not to look inside one of your tables (table1), use something likedeny select on table1 to user1You may want to take a look at server roles and database roles and grant only those roles to the user that he needs. Besides this, you can always use DENY to override any permission. |
 |
|
|
|
|
|
Installing SQL for non trusted users