Hi, I have a situation where one user has been given DBO Role Member ship on the master table. I want to revoke that. But When I revoke it, he is not able to add new users (to the instance) from his application (Navision). I want to revoke his dbo mapping on master, but give him some sort of role that he would be able to add users to the instance through the appliction. I have tried giving the securityadmin role and it isn't working for him.
In order to give people security permissions on the server itself, to create logins, not just create users within a database, you must give them security_admin. But, read [the documentation] from Microsoft: > The securityadmin role should be > treated as equivalent to the sysadmin > role. I wouldn't recommend this approach unless you're planning on giving them the permission to create logins with 'sa' privileges. :