SQL Server 数据库安全

转自:http://www.cnblogs.com/hoojo/archive/2011/07/20/2111990.html

 

  • 登陆用户

创建登陆用户

--创建登陆用户
--create login login_name from windows with default_database = database | default_language = language;
create login [localhost\hoojo-pc] from windows with default_database = testHome;
--创建登陆用户
--create login login_name with password = 'pwd' [hashed] [must_change] [check_expiration] [check_policy]
create login admin with password = '123456', default_database = testHome;

查看登陆用户

select * from sys.sql_logins;

修改用户

alter login admin with name = jackson;
alter login jackson with password = 'abcd';

禁用、启用用户

alter login jackson disable;    --禁用
alter login jackson enable;     --启用

删除用户

drop login jackson;

修改映射凭据(将登录名MacraeS 映射到凭据Custodian04)

alter login jackson with credential = Custodian04;
  • 数据库用户

创建数据库用户

create user jack from login admin;
create user jason for login jackson;

create user jack from login admin with default_schema = temp_schema;

启动guest用户(不推荐使用)
特殊用户dbo、guest;sa对应的dbo用户,其他没有映射的用户就是guest用户

grant connect to guest;

修改用户

alter user jack with name = jason;
alter user jason with default_schema = jason_schema;

 

删除用户

drop user jason;

 


  • 数据库角色

给jack用户授权buyers角色

create role buyers authorIzation jack;

修改角色

alter role buyers with name = new_buyers;

 

删除角色

drop role new_buyers;

 

  • 架构管理

创建

create schema temp_schema;

 

指定用户

create schema jason_scheam authorization jason;

授权查询

grant select to jason;

删除

drop schema jason_scheam;

 


  • 权限

授权创建table

grant create table to jason;

授权jason查询student表

grant select on student to jason;

收回权限

revoke create table to jason;
revoke select on student to jason;

 

posted @ 2016-09-02 17:19  KUYUTI  阅读(330)  评论(0编辑  收藏  举报