| Applies To | |||
| Product(s): | gINT Professional Plus | ||
| Version(s): | N/A | ||
| Environment: | Microsoft SQL Server | ||
| Area: | Data Entry | ||
| Subarea: | |||
| Original Authors: |
Dave Anderson, Bentley Software; | ||
We wish to limit what some users can do in our gINT SQL enterprise database. For example, some users should be able to view data and output reports, but not change the data. Other users should be able to edit data but not modify the database.
Introduction
Microsoft SQL Server allows you to control what kind of access you give to users.
You can use either Windows or SQL Server authentication. Our example server uses Windows authentication.
In this example, we will establish 3 levels of user permissions:
- Administrator: can modify, upsize, and read and write to any database.
-
Update User: can read and write to selected databases.
-
Read-Only User: can only read selected databases.
Steps to Accomplish
Connect to the SQL database
- Connect to a SQL Server instance:
-
Navigate to Security
Logins:
-
Create or Select a User.
-
Right-click on a user and select New Login…
-
Right-click on a user and select Properties.
Administrative User:
- Select Server Roles. Check public and sysadmin.
-
User Mapping: not necessary to select anything given the sysadmin authority.
Read-Write User:
-
Select Server Roles. Check public.
-
Select User Mapping. Check the databases that the user can access. Check the roles db_datareader, db_datawriter and public:
Read-Only User (qa3):
- Select Server Roles. Check public.
-
Select User Mapping. Check the databases that the user can access. Check the roles db_datareader and public.
See Also
gINT V8i Enterprise User Guide: docs.bentley.com/.../gINT_enterpriseuserguide_v8_30.exe