SQL Server login creation by non-System Administrators

pts.
Tags:
SQL Server
We have an environment in which 3 DBAs are currently creating upwards of 50 new SQL server IDs per day, leaving us cramped for time. The Help desk personnel here create the Network logins, and set the application security for our business apps, so we wanted to give them the ability to ceate SQL Login IDs as well. We tried adding them to the Security Admin role, but we get errors that I've traced down to a DBCC auditevent call that they do not have permission to. I can't find how to grant them this without making them part of the System Administrator group, which company security policy prohibits. Is there another way to grant them the ability to create SQL logins?
Asked: Last updated:
Related Questions
1

Answer Wiki

Thanks. We'll let you know when a new response is added.

I am surprised the Security Administrator Role is not working. You are granting the appropriate database access as well? They need to be granted access to the default database for the login, if not, they will not be able to add it.

You could also set up Windows Groups as a System Administrator and as long as they have permission to add a Windows login to the appropraite group, the permissions travel to the database as well.

Kevin

Discuss This Question:  

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

Thanks! We'll email you when relevant content is added and updated.

Following

Share this item with your network: