Hello, for SQL 2000 I have been tasked with locking down the production server so people can only interface with the Access front end to read and write, with only two people being admins.
Thus if the general users (domain users) and domain administrators have public, db_datareader, and db_datawriter for just the databases they need would this keep the admins from adding tables to the database through enterprise manager?
As I am still trying to understand security roles, if I give the server role "System Administrators" to the two people will this supersede the database access setup? Or do I need to setup the database access to be db_owner for all databases?
Hope this makes sense as I am confused!
Thanks
djj
Thus if the general users (domain users) and domain administrators have public, db_datareader, and db_datawriter for just the databases they need would this keep the admins from adding tables to the database through enterprise manager?
As I am still trying to understand security roles, if I give the server role "System Administrators" to the two people will this supersede the database access setup? Or do I need to setup the database access to be db_owner for all databases?
Hope this makes sense as I am confused!
Thanks
djj