top of page

Schema permissions using the principle of least privilege

You need to ensure the administrator can perform the tasks using the principle of least privilege. Which schema permissions should you assign? To answer, select the appropriate permissions for each task in the answer area. NOTE: Each correct selection is worth one point.

 

Answer Given

 

My thoughts:

1. Create a Stored Procedure requires CREATE PROCEDURE permission in the database and ALTER permission on the schema in which the procedure is being created. https://docs.microsoft.com/en-us/sql/relational-databases/stored-procedures/create-a-stored-procedure?view=sql-server-ver15#Permissions

2. Rename a Database requires ALTER permission on the database. https://docs.microsoft.com/en-us/sql/relational-databases/databases/rename-a-database?view=sql-server-ver15

3. To change the collation of an existing database, requires ALTER permission on the database. https://docs.microsoft.com/en-us/sql/relational-databases/collations/set-or-change-the-database-collation?view=sql-server-ver15

4. Removes an alias data type or a common language runtime (CLR) user-defined type from the current database requires either CONTROL permission on type_name or ALTER permission on schema_name. https://docs.microsoft.com/en-us/sql/t-sql/statements/drop-type-transact-sql?view=sql-server-ver15


bottom of page