Wednesday, August 18, 2010

Grants and Deny permissions column wise in SQL Server login.

Grants and Deny permissions column wise in SQL Server login.
Syntax :

GRANT permission [ ,...n ] }
ON LOGIN ::SQL_Server_login
TO [ ,...n ]
[ WITH GRANT OPTION ]
[ AS SQL_Server_login ]

::= SQL_Server_login
| SQL_Server_login_from_Windows_login
| SQL_Server_login_from_certificate
| SQL_Server_login_from_AsymKey

DENY permission [ ,...n ]
TO [ ,...n ]
[ CASCADE ]
[ AS ]

::=SQL_Server_login
| SQL_Server_login_mapped_to_Windows_login
| SQL_Server_login_mapped_to_Windows_group
| SQL_Server_login_mapped_to_certificate
| SQL_Server_login_mapped_to_asymmetric_key ::=SQL_Server_login
| SQL_Server_login_mapped_to_Windows_login
| SQL_Server_login_mapped_to_Windows_group
| SQL_Server_login_mapped_to_certificate
| SQL_Server_login_mapped_to_asymmetric_key

Arguments
________________________________________
permission
Specifies a permission that can be granted on a SQL Server login. For a list of the permissions, see the Remarks section later in this topic.
LOGIN :: SQL_Server_login
Specifies the SQL Server login on which the permission is being granted. The scope qualifier (::) is required.
TO
Specifies the SQL Server login to which the permission is being granted.
SQL_Server_login
Specifies the name of a SQL Server login.
SQL_Server_login_from_Windows_login
Specifies the name of a SQL Server login created from a Windows login.
SQL_Server_login_from_certificate
Specifies the name of a SQL Server login mapped to a certificate.
SQL_Server_login_from_AsymKey
Specifies the name of a SQL Server login mapped to an asymmetric key.
WITH GRANT OPTION
Indicates that the principal will also be given the ability to grant the specified permission to other principals.
AS SQL_Server_login
Specifies the SQL Server login from which the principal executing this query derives its right to grant the permission.
Example :
GRANT/DENY UPDATE ON [TABLE_NAME] (COLUMN_NAME) TO [USER_NAME]

GRANT:

GRANT UPDATE ON [dbo].[Table_1] ([Name]) TO [ABC] AS [dbo]

DENY :

DENY UPDATE ON [dbo].[Table_1] ([Date2]) TO [ABC]
Posted by at 1 comment:
Labels:
Subscribe to: Posts (Atom)