Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
Home
Discussion Groups
DB Engine
SQL ServerMSDESQL Server CE
Services
Analysis (Data Mining)Analysis (OLAP)DTSIntegration ServicesNotification ServicesReporting Services
Programming
CLRConnectivitySQLXML
Other Technologies
ClusteringEnglish QueryFull-Text SearchReplicationService Broker
General
Data WarehousingPerformanceSecuritySetupSQL Server ToolsOther SQL Server Topics
DirectoryUser Groups
Related Topics
MS AccessOther DB ProductsMS Server Products.NET DevelopmentVB DevelopmentJava DevelopmentMore Topics ...
SQL Server Forum / General / Security / March 2007

Tip: Looking for answers? Try searching our database.

Permission clarification - dbo vs domain\user.dbo

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
thejamie - 28 Mar 2007 03:02 GMT
Our developers have been given dbcreator rights on the server and have dbo
rights for a given database.   This is a slight change from what was
previously dolled out as rights on the database.   When the developer creates
a view, rather than the view being created as dbo.myview, it is created as
Domain\developername.dbo.myview.    I am not sure this is what I want.   Is
there a permission I can add that will allow the developer to create DBO only
views on the given database?
Signature

Regards,
Jamie

Reply to this Message
Uri Dimant - 28 Mar 2007 08:30 GMT
BOL says:
The dbo is a user that has implied permissions to perform all activities in
the database. Any member of the sysadmin fixed server role who uses a
database is mapped to the special user inside each database called dbo.
Also, any object created by any member of the sysadmin fixed server role
belongs to dbo automatically.

For example, if user Andrew is a member of the sysadmin fixed server role
and creates a table T1, T1 belongs to dbo and is qualified as dbo.T1, not as
Andrew.T1. Conversely, if Andrew is not a member of the sysadmin fixed
server role but is a member only of the db_owner fixed database role and
creates a table T1, T1 belongs to Andrew and is qualified as Andrew.T1. The
table belongs to Andrew because he did not qualify the table as dbo.T1.

The dbo user cannot be deleted and is always present in every database.

Only objects created by members of the sysadmin fixed server role (or by the
dbo user) belong to dbo. Objects created by any other user who is not also a
member of the sysadmin fixed server role (including members of the db_owner
fixed database role):

 a.. Belong to the user creating the object, not dbo.

 b.. Are qualified with the name of the user who created the object.
> Our developers have been given dbcreator rights on the server and have dbo
> rights for a given database.   This is a slight change from what was
[quoted text clipped - 6 lines]
> only
> views on the given database?
Reply to this Message
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2009 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.