Tuesday, March 27, 2012

grant truncate table permission - how?

User1 has permission to run an sp (on sqlServer2k). The
sp truncates a table and then does other stuff. I get the
permission denied message for user1 to perform this
operation. I tried
Grant Truncate Table to User1
in query analyzer, but get the message
Privilege TRUNCATE TABLE may not be granted or revoked.
How do I give user1 permission to trucate tables in DB1?
Thanks,
RonHi Ron,
A user with db_ddladmin role can issue any DDL command inside the database
he is assigned the role. We can not revoke the permission for a specific
object
from the user if he is the part of db_ddladmin role.
Can he only truncate the tables he is allowed access to in the particular
role he is a member of for a respective database?
He can Truncate the tables only on that particular database for which he got
db_ddladmin role.
Thanks
Hari
SQL Server MVP
"Ron" <anonymous@.discussions.microsoft.com> wrote in message
news:201301c53edc$af1603f0$a401280a@.phx.gbl...[vbcol=seagreen]
>I added user1 to ddladmin. This seems to work. Does this
> mean user1 can truncate any table he wants? Is it
> possible to restrict what tables user1 can truncate? Or
> can he only truncate the tables he is allowed access to in
> the particular role he is a member of for a respective
> database?
> Thanks,
> Ron
>
> the|||Thanks for your reply. I see where I made a mistake. I
placed user1 in ddladmin on the security foler in EM. I
saw the ddladmin in the respective database. Now I have
to change that permission. Well, it is all a learning
process. Thanks again.

>--Original Message--
>Hi Ron,
>A user with db_ddladmin role can issue any DDL command
inside the database
>he is assigned the role. We can not revoke the
permission for a specific
>object
>from the user if he is the part of db_ddladmin role.
>Can he only truncate the tables he is allowed access to
in the particular
>role he is a member of for a respective database?
>He can Truncate the tables only on that particular
database for which he got
>db_ddladmin role.
>Thanks
>Hari
>SQL Server MVP
>
>"Ron" <anonymous@.discussions.microsoft.com> wrote in
message
>news:201301c53edc$af1603f0$a401280a@.phx.gbl...
this[vbcol=seagreen]
Or[vbcol=seagreen]
to in[vbcol=seagreen]
The[vbcol=seagreen]
DB1?[vbcol=seagreen]
>
>.
>
Posted by surpa at 11:52 PM
Labels: , , , , , , , , , , , , , , , , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)