Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
sqldumbchump
Starting Member
2 Posts |
 Posted - 2011-04-20 : 17:37:44
|
| I have a bit of an issue configuring domain users, roles and securables. All of what I am about to describe works when I validate with a sql account. However, all domain accounts that I add to the role are able to see all tables/views in the database.1) Create Login and User on the database2) Establish a Role called "ViewSpecificTablesOnly"3) Configure securables on the Role defined in #2 to only allow SELECT on specific tables.4) Add the User (domain user) to the role.5) Ask the user to validate access and note that they can see all tables in the database.This method of restricting access to specific tables seems to work fine if the user is a SQL user. However, when the user is using their domain credentials to log in they can see much more.Where can I look to resolve this descrepancy? The users are not domain or local admins on the box.Thanks... |
|
|
lionofdezert
Aged Yak Warrior
885 Posts |
Posted - 2011-04-21 : 02:19:03
|
| in SSMS move to -- security --> Server Roles, right click on sysadmin role, and see who (unwanted user) is in this list.--------------------------http://connectsql.blogspot.com/ |
 |
|
|
sqldumbchump
Starting Member
2 Posts |
Posted - 2011-04-21 : 15:03:49
|
| I've checked all of the server roled (including sysadmin) and the particular individual is not in any of them.Is the procedure above correct for providing restricted access (to specific tables) for an particular domain user?Thank you,ck |
|
|
|
|
|
|
Securables & Effective Permissions