Specialized User / Role / Schema setups
GRANT VIEW DEFINITION ON SCHEMA :: Usr TO [ABC\SmithJ]
GRANT CREATE TABLE TO [ABC\SmithJ]
OR ...
UserA + UserB + UserC >> Role1 >> Schema1 (ownership no difference)
for Role1 assign ddl_admin
Remove role rights on other schemas
Can still create objects in other schemas but not modify them
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment