Home Dashboard Directory Help

Read-Only System administrator by Ludo from Belgacom



Sign in
to vote
Type: Suggestion
ID: 808076
Opened: 11/8/2013 6:34:53 AM
Access Restriction: Public


We are frequently facing the issues that on a development systems, developers want to see all the settings from SQL Server & SQL Agent.
There are possibilities to give user server and database view rights but sometimes this is not enough.
Some functionality is still not working.
ex: Checking SQL Server logs with the GUI, SSIS Catalog views, SQL agent things, etc..
Why because in many stored procedures the check for sysadmin is hard coded.
Even in SQL 2012 it is not possible to create some kind of server role that gives you the exact same behavior as being a system administrator but without the possibility to modify things.

It would be nice if we can give all rights possible in read-only or update mode if necessary.
There is always the possibility to make a 2° version of an SP that contains the sysadmin check, but when you want to use SSMS, and developers want to use it, it will not work.
Sign in to post a comment.
Posted by Ron Klimaszewski on 2/13/2014 at 3:13 PM
It is time to remove hard-coded checks in the code. It limits flexibility.
Posted by RobNicholson, MCSM on 2/5/2014 at 10:04 PM
This would be very benefical:
- for those tools (such as Policy Based Management) that are used to check instance/database configurations, currently you have to give these accounts sysadmin or CONTROL SERVER (not best practice)
- for temporary support staff for diagnosis (consultants, contractors, etc)
Sign in to post a workaround.