Adaptive Server Enterprise 15.7 SP100 > Security Administration Guide 15.7 ESD #2 > Managing User Permissions
Chapter 6: Managing User Permissions
Databaseowners and system administrators are the only users who can grant objectcreation permissions to other users (except for createencryption key and create trigger permissionwhich can only be granted by the system security officer). The databaseowner has full privileges to do anything inside that database, andmust explicitly grant permissions to other users with the grant command.
Permission to use the following commands is automaticallygranted to the database owner and cannot be transferred to otherusers:
checkpoint
dbcc
alter database
online database
drop database
dump database
dump transaction
grant (object creation permissions)
load database
load transaction
revoke (object creation permissions)
setuser
Database owners can grant or revoke permission to:
Use these commands: createdefault, create procedure, createrule, create table, createview.
Database owners can grant permission to use createdatabase, set tracing, and connect ifthey have the sa_role and are in the master database.
all – if you are thedatabase owner, all grants permissions for all create commandsexcept create database, create trigger and createencryption key.
default permissions on system tables
Use dbcc commands:checkalloc, checkcatalog, checkdb, checkindex, checkstorage, checktable, checkverify, fix_text, indexalloc, reindex, tablealloc, textalloc, tune
| Copyright © 2012. Sybase Inc. All rights reserved. | | |
