SQL Server 数据库安全
--创建登陆用户
--
create
login login_name
from
windows
with
default_database =
database
| default_language =
language
;
create
login [localhost\hoojo-pc]
from
windows
with
default_database = testHome;
--创建登陆用户
--
create
login login_name
with
password =
'pwd'
[hashed] [must_change] [check_expiration] [check_policy]
create
login
admin
with
password =
'123456'
, default_database = testHome;
--查看登陆用户
select
*
from
sys.sql_logins;
--修改用户
alter
login
admin
with
name = jackson;
alter
login jackson
with
password =
'abcd'
;
--禁用、启用用户
alter
login jackson disable; --禁用
alter
login jackson enable; --启用
--删除用户
drop
login jackson;
--修改映射凭据(将登录名MacraeS 映射到凭据Custodian04)
alter
login jackson
with
credential = Custodian04;
-------数据库用户
--创建数据库用户
create
user
jack
from
login
admin
;
create
user
jason
for
login jackson;
create
user
jack
from
login
admin
with
default_schema = temp_schema;
--启动guest用户(不推荐使用)
--特殊用户dbo、guest;sa对应的dbo用户,其他没有映射的用户就是guest用户
grant
connect
to
guest;
--修改用户
alter
user
jack
with
name = jason;
alter
user
jason
with
default_schema = jason_schema;
--删除用户
drop
user
jason;
--------数据库角色
--给jack用户授权buyers角色
create
role
buyers
authorIzation
jack;
--修改角色
alter
role
buyers
with
name = new_buyers;
--删除角色
drop
role
new_buyers;
--------架构管理
--创建
create
schema
temp_schema;
--指定用户
create
schema
jason_scheam
authorization
jason;
--授权查询
grant
select
to
jason;
--删除
drop
schema
jason_scheam;
--------权限
--授权创建table
grant
create
table
to
jason;
--授权jason查询student表
grant
select
on
student
to
jason;
--收回权限
revoke
create
table
to
jason;
revoke
select
on
student
to
jason;
