Howdy, Stranger!
Categories
- All Categories
- 73 General
- 73 Announcements
- 66.5K Microsoft Dynamics NAV
- 18.5K NAV Three Tier
- 38.4K NAV/Navision Classic Client
- 3.6K Navision Attain
- 2.4K Navision Financials
- 115 Navision DOS
- 854 Navision e-Commerce
- 1K NAV Tips & Tricks
- 772 NAV Dutch speaking only
- 615 NAV Courses, Exams & Certification
- 2K Microsoft Dynamics-Other
- 1.5K Dynamics AX
- 267 Dynamics CRM
- 109 Dynamics GP
- 10 Dynamics SL
- 1.5K Other
- 992 SQL General
- 384 SQL Performance
- 33 SQL Tips & Tricks
- 34 Design Patterns (General & Best Practices)
- Architectural Patterns
- 10 Design Patterns
- 5 Implementation Patterns
- 53 3rd Party Products, Services & Events
- 1.7K General
- 1.1K General Chat
- 1.6K Website
- 79 Testing
- 1.2K Download section
- 23 How Tos section
- 259 Feedback
- 12 NAV TechDays 2013 Sessions
- 13 NAV TechDays 2012 Sessions
Options
SQL Permission problem.
Cem_Karaer
Member Posts: 281
Hi all,
I need an advice about creating a login for Navision use on SQL 2005. I think Navision requires the login to be a member of securityadmin server role (otherwise it's impossible for a user mapped to the login to change its password within Navision). But securityadmin is a over-privileged role for only a Navision user. Denying "alter any login" permission in server-wide produces the same result as denying securityadmin role. What I'm afraid of is that the over-privileged login can log on the server by using Management Studio and change passwords of others. The only way I could figure out was to deny Alter permission for every other login. But this is a very tedious job because every login must be negated for all other logins except itself.
I'm absolutely sure that I do something wrong
. Readjustments will be greatly appreciated!
I need an advice about creating a login for Navision use on SQL 2005. I think Navision requires the login to be a member of securityadmin server role (otherwise it's impossible for a user mapped to the login to change its password within Navision). But securityadmin is a over-privileged role for only a Navision user. Denying "alter any login" permission in server-wide produces the same result as denying securityadmin role. What I'm afraid of is that the over-privileged login can log on the server by using Management Studio and change passwords of others. The only way I could figure out was to deny Alter permission for every other login. But this is a very tedious job because every login must be negated for all other logins except itself.
I'm absolutely sure that I do something wrong
. Readjustments will be greatly appreciated! Cem Karaer @ Pargesoft
Dynamics NAV Developer since 2005
Dynamics NAV Developer since 2005
0
Answers
Dynamics NAV Developer since 2005
No PM,please use the forum. || May the <SOLVED>-attribute be in your title!