Here’s my dilemma:
I need to lock down a SQL server as tightly as possible. Each database on the server has one user account, and I need to make sure that user account can access and VIEW only their own database in Enterprise Manager. Specifically, when a user logs in with Enterprise manager the following criteria should be met:
1. They should have *almost* full access to their own database. They should be able to do anything on their own database EXCEPT perform backups and restores.
2. When expanding the Databases folder in Enterprise Manager, they should not be able to see the names of other users’ databases on the system.
3. They should not be able to look at Process Information.
4. They should not be able to view the names of other user accounts on the system.
5. They should not be able to create Jobs.
Suffice it to say, I need to make sure that when a user logs in they can view and make changes to ONLY their own database.
3,500 points to the guy orgal that can help me do this! I’m a seasoned SQL developer but this is my first shot at security/administration so any help is appreciated!