SQL - Security Levels
- Server Level Security
- LOGINS >> WINDOWS LOGINS / SQL SERVER LOGINS
- SERVER ROLES
- sysadmin : Members of this role can perform any operation on entire server.
- serveradmin : can perform RW operations on entire server.
- securityadmin : can manage security on the entire server.a
- processadmin : can perform AUDIT operations on entire server.
- bulkadmin : can perform bulk operations on entire server.
- dbcreator : can perform DB Level DDL operations on server.
- setupadmin : can perform REPAIRS, REBUILDS on entire server.
- public : Members of this role can access metadata on the entire server.
- Database Level Security
- USERS >> Windows Users, SQL Server Users, Containment Users
- Roles:
- db_owner - can perform any operation on entire database
- db_ddladmin - can perform any DDL operations on entire database
- db_datareader - can perform any READ operation on entire database
- db_denydatareader: CANNOT perform READ operations on entire database
- db_datawriter - can perform any WRITE operation on entire database a
- db_denydatawriter - CANNOT perform WRITE operation on entire database
- db_securityadmin - can perform security managment within database
- db_accessadmin : can perform READ & ACCESS operations within db
- public : can access metadata on the entire database.
- Object Level Security
- Column Level Security
- Data Level Security
- Job Level Security
No comments:
Post a Comment