Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
Home
Discussion Groups
DB Engine
SQL ServerMSDESQL Server CE
Services
Analysis (Data Mining)Analysis (OLAP)DTSIntegration ServicesNotification ServicesReporting Services
Programming
CLRConnectivitySQLXML
Other Technologies
ClusteringEnglish QueryFull-Text SearchReplicationService Broker
General
Data WarehousingPerformanceSecuritySetupSQL Server ToolsOther SQL Server Topics
DirectoryUser Groups
Related Topics
MS AccessOther DB ProductsMS Server Products.NET DevelopmentVB DevelopmentJava DevelopmentMore Topics ...
SQL Server Forum / General / Security / March 2007

Tip: Looking for answers? Try searching our database.

Security role problem

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
Tore G. - 25 Mar 2007 20:13 GMT
I have an SQL Server 2000 database with access project (.adp) front end
(client).

I have a security role that has the permission to run a stored procedure.
The stored procedure does a select and an update on a table. To make the
stored procedure run the security role have to be granted permission to do
select and update on the table.

The problem occurs when I  attach this role to the client user of the
database.
This means that the end user can use excel, access or any other tool to
access the table directly and do updates of the table. I do not want this. I
would like the user to operate on the table via the stored procedure only,
not directly. How can this be fixed?

Regards

Tore
Reply to this Message
Wei Lu [MSFT] - 26 Mar 2007 08:31 GMT
Hello Tore,

You don't need to grant the update permission on the table for the security
role. You could deny the update permission to the table and grant the
Execute permission on the stored procedure. So that the security role could
only update the table by using the stored procedure.

Hope this will be helpful.

Sincerely,

Wei Lu

Microsoft Online Community Support

==================================================

Get notification to my posts through email? Please refer to
http://msdn.microsoft.com/subscriptions/managednewsgroups/default.aspx#notif
ications.

Note: The MSDN Managed Newsgroup support offering is for non-urgent issues
where an initial response from the community or a Microsoft Support
Engineer within 1 business day is acceptable. Please note that each follow
up response may take approximately 2 business days as the support
professional working with you may need further investigation to reach the
most efficient resolution. The offering is not appropriate for situations
that require urgent, real-time or phone-based interactions or complex
project analysis and dump analysis issues. Issues of this nature are best
handled working with a dedicated Microsoft Support Engineer by contacting
Microsoft Customer Support Services (CSS) at
http://msdn.microsoft.com/subscriptions/support/default.aspx.

==================================================
(This posting is provided "AS IS", with no warranties, and confers no
rights.)
Reply to this Message
Wei Lu [MSFT] - 28 Mar 2007 12:55 GMT
Hi ,

How is everything going? Please feel free to let me know if you need any
assistance.

Sincerely,

Wei Lu
Microsoft Online Community Support

==================================================

When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.

==================================================
Signature

This posting is provided "AS IS" with no warranties, and confers no rights.

Reply to this Message
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2009 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.