Results 1 to 2 of 2
  1. #1
    Join Date
    Aug 2003

    Question Unanswered: User viewable in Enterprise Manager,


    New to these forums, so I'm hoping someone can help.

    1) Is there a way to deny users (who have access to EM, and have a valid login in our database), from viewing the complete login list under the 'Security -> Logins' information tab in EM.

    Currently, any valid login to the system, if they use Enterprise Manager, can view all logins for the database instance.

    Does this seem like a security flaw, i.e. any old user with EM can view the entire login list for the database instance they are logged on to.

    Is it possible to revoke (or even deny) access to the master.dbo.syslogins table from public? Or is this a bad idea?


    Thanks heaps!

  2. #2
    Join Date
    Jul 2003
    The Dark Planet
    It is possible to revoke permissions on the view master.dbo.syslogins. The users will not be able to see other logins.

    I dont consider this as a security flaw as the dbo can revoke or grant specific rights to any user. The security depends on the type of environment you are working in.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts