Rights

I have a basic question regarding rights. What level of rights do I
have to have to grant another user update rights? I don't want to
give everyone owner rights. Can a person with update rights grant
another person update rights?

Thanks."Chris_M" <cmcclendon@.houston.rr.com> wrote in message
news:d6cef4db.0311260956.5893b978@.posting.google.c om...
> I have a basic question regarding rights. What level of rights do I
> have to have to grant another user update rights? I don't want to
> give everyone owner rights. Can a person with update rights grant
> another person update rights?
> Thanks.

You can grant a user update rights per table (and per column) if necessary.
If you specify WITH GRANT OPTION, then that user can grant the update right
to other users. There are examples in Books Online in the syntax for GRANT.

A general best practice is to manage permissions with roles, not by
individual user, as it makes things a lot easier. Also have a look at the
built-in roles, such as db_datareader and db_datawriter, which can be
useful.

In general, though, it's considered better to allow data access only through
stored procedures, if this is possible in your situation. This means that
users never require update permissions on tables, they only have execute
permissions on the procedures. That gives you more flexibility, as you can
add logic to the procedure for more control. Check out "Using Ownership
Chains" in Books Online for more details on how this works.

Simon