question

peacemaker avatar image
peacemaker asked

Hello, I have a schema (wages) and all objects under that schema is classified as sensitive and was asked to make sure absolutely no one has access to it except 5 users.

Name of Schema : wages

Schema Exists in 3 DBs

Current Access:- Developers and analysts with membership in multiple groups have access.

Future State:-

1) 5 users(developers/analysts) assigned to that project can only access objects under Wages schema.

2) All other users in the database should not be able to access that schema objects.

3) If we perform DENY on Groups to that SCHEMA unfortunately the above 5 users who are assigned to that projects are members of different group which currently has access. So i need to remove them before denying access.

4) I currently created two roles one for access and one for Deny.

I am happy to provide additional details if required.

Please advise,

replicationschemasql server 2016ad groupssql security
10 |1200 characters needed characters left characters exceeded

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

0 Answers

· Write an Answer

Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.