Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations wOOdy-Soft on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

SQL Server model...

Status
Not open for further replies.
Parasu

Parasu

Technical User
Mar 11, 2001
38
PH
Hi all,
Im a newbie SQL DBA. I need the help of you guys. Here is my problem.
My company is an Application Service Provider (ASP) which will also do some database hosting. The SQL database will reside in my data center. We'll create a database and a user for each client who registers for database hosting. I'll be giving the connection details for my client to connect to my sql server thru EM. Im really worried about the databases when I expose my server thru EM.
Can anyone say what will be the right security options to be followed in my scenario. Remember that, each client can view, change and delete objects in his database only. He should not change database size, should not create new db etc.
Pls help
 
Sort by date Sort by votes
Hi There

You can add your clients to the following roles in the database.

db_reader (can read records in the database tables - SELECT)
db_writer (can update and delete records in the database
tables - UPDATE, INSERT, DELETE)
db_ddladmin (can create and delete objects in the databases)

If you want to revoke /add any more specific permissions.
1. Open up Enterprise Manager, Go to Database, Users
2. Right-Click on the User
3. Select Properties
4. Click [Permissions]
5. Set and Revoke Select/Update/Delete/Exec permissions
from there for each object in the database
Hope This Helps
Bernadette
 
Upvote 0 Downvote
One other consideration is whether you want to allow them to run various system stored procedures. Robert Bradley
teaser.jpg

 
Upvote 0 Downvote
Hi Bernadette and foxdev,
Thanx alot for those advises. I'll work on it.
Someone told me that, I can make the user as dbo of his database. Is this Ok or does this have some implications.

Cheers
Parasuraman
 
Upvote 0 Downvote
Hi Parasu

If you add someone to the db_owner role you automatically give the user complete control over the database. Members of this role can modify database settings, change object permissions, perform database backups, perform any administration task on the database.

Be careful of giving your users more permissions than they need.
Check out "Database Roles" in "Books On-Line". It will explain what each of the roles do

Hope this helps Bernadette
 
Upvote 0 Downvote
Bernadette is correct, and in your situation, it may well be appropriate to give the customer complete control over their database - just don't let them create new ones.

One of my sites is hosted on NT by a company that includes SQL Server. IIRC, they did give me the DBO permission. Robert Bradley
teaser.jpg

 
Upvote 0 Downvote
Hi guys,
Thanx again. I dont understand one thing. If I make the user as a db_owner, then, he can increase the size of the database and other things which he is not supposed to do.

Foxdev, Regarding IIRC, you were the dbo. So, u should have got the rights to increase the database size and other things. What exactly was the roles that were given to u in ur IIRC scenario
Cheers and thanx for ur wonderful replies, guys

Parasu
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

MathiasB
  • Question
Parameterised sql server query
Replies
8
Views
413
Chriss Miller
C
V
  • Locked
  • Question
xp_cmdshell vs psexec - this SQL server forgets credential to an W10 share
Replies
0
Views
773
Volvere
V
gbaughma
  • Locked
  • Question
SQL Performance
Replies
11
Views
962
pjw001
pjw001
Steve Yu
  • Locked
  • Question
How secure is MS SQL on the Internet vs behind firewall inside a LAN 1
Replies
3
Views
563
Chris Miller
Chris Miller
elly00
  • Locked
  • Question
create sql view using batch file
Replies
5
Views
649
Mike Lewis
Mike Lewis

Part and Inventory Search

Sponsor

Back
Top