全部產品
Search

搜尋本產品

    ApsaraDB RDS:帳號許可權列表

    文件中心

    ApsaraDB RDS:帳號許可權列表

    更新時間:Oct 18, 2024

    本文介紹RDS SQL Server各帳號類型、權限類別型對應的角色與許可權。

    注意事項

    出於安全考慮,RDS未開放所有許可權。針對這個問題,阿里雲利用預存程序對部分未開放許可權做了封裝,您可通過預存程序執行部分受限的操作。更多資訊,請參見預存程序

    帳號許可權列表

    帳號類型

    授權對象

    權限類別型

    角色

    許可權

    • 高許可權帳號

    • 普通帳號

    使用者資料庫

    所有者

    • Server層級角色

      • public

      • processadmin

      • setupadmin

    • Database層級角色

      • public

      • db_owner

    Server層級許可權

    • CONNECT SQL

    • ALTER ANY LOGIN

    • ALTER ANY LINKED SERVER

    • ALTER ANY CONNECTION

    • ALTER TRACE

    • VIEW ANY DATABASE

    • VIEW SERVER STATE

    • ALTER SERVER STATE

    Database層級許可權

    • CREATE TABLE

    • CREATE VIEW

    • CREATE PROCEDURE

    • CREATE FUNCTION

    • CREATE RULE

    • CREATE DEFAULT

    • CREATE TYPE

    • CREATE ASSEMBLY

    • CREATE XML SCHEMA COLLECTION

    • CREATE SCHEMA

    • CREATE SYNONYM

    • CREATE AGGREGATE

    • CREATE ROLE

    • CREATE MESSAGE TYPE

    • CREATE SERVICE

    • CREATE CONTRACT

    • CREATE REMOTE SERVICE BINDING

    • CREATE ROUTE

    • CREATE QUEUE

    • CREATE SYMMETRIC KEY

    • CREATE ASYMMETRIC KEY

    • CREATE FULLTEXT CATALOG

    • CREATE CERTIFICATE

    • CREATE DATABASE DDL EVENT NOTIFICATION

    • CONNECT

    • CONNECT REPLICATION

    • CHECKPOINT

    • SUBSCRIBE QUERY NOTIFICATIONS

    • AUTHENTICATE

    • SHOWPLAN

    • ALTER ANY USER

    • ALTER ANY ROLE

    • ALTER ANY APPLICATION ROLE

    • ALTER ANY COLUMN ENCRYPTION KEY

    • ALTER ANY COLUMN MASTER KEY

    • ALTER ANY SCHEMA

    • ALTER ANY ASSEMBLY

    • ALTER ANY DATABASE SCOPED CONFIGURATION

    • ALTER ANY DATASPACE

    • ALTER ANY EXTERNAL DATA SOURCE

    • ALTER ANY EXTERNAL FILE FORMAT

    • ALTER ANY MESSAGE TYPE

    • ALTER ANY CONTRACT

    • ALTER ANY SERVICE

    • ALTER ANY REMOTE SERVICE BINDING

    • ALTER ANY ROUTE

    • ALTER ANY FULLTEXT CATALOG

    • ALTER ANY SYMMETRIC KEY

    • ALTER ANY ASYMMETRIC KEY

    • ALTER ANY CERTIFICATE

    • ALTER ANY SECURITY POLICY

    • SELECT

    • INSERT

    • UPDATE

    • DELETE

    • REFERENCES

    • EXECUTE

    • ALTER ANY DATABASE DDL TRIGGER

    • ALTER ANY DATABASE EVENT NOTIFICATION

    • ALTER ANY DATABASE AUDIT

    • ALTER ANY DATABASE EVENT SESSION

    • KILL DATABASE CONNECTION

    • VIEW ANY COLUMN ENCRYPTION KEY DEFINITION

    • VIEW ANY COLUMN MASTER KEY DEFINITION

    • VIEW DATABASE STATE

    • VIEW DEFINITION

    • TAKE OWNERSHIP

    • ALTER

    • ALTER ANY MASK

    • UNMASK

    • EXECUTE ANY EXTERNAL SCRIPT

    • CONTROL

    唯讀

    • Server層級角色

      • public

      • processadmin

      • setupadmin

    • Database層級角色

      • public

      • db_datareader

    Server層級許可權

    • CONNECT SQL

    • ALTER ANY LOGIN

    • ALTER ANY LINKED SERVER

    • ALTER ANY CONNECTION

    • ALTER TRACE

    • VIEW ANY DATABASE

    • VIEW SERVER STATE

    • ALTER SERVER STATE

    Database層級許可權

    • CONNECT

    • SHOWPLAN

    • SELECT

    • KILL DATABASE CONNECTION

    • VIEW ANY COLUMN ENCRYPTION KEY DEFINITION

    • VIEW ANY COLUMN MASTER KEY DEFINITION

    • VIEW DATABASE STATE

    讀寫(DML)

    • Server層級角色

      • public

      • processadmin

      • setupadmin

    • Database層級角色

      • public

      • db_datareader

      • db_datawriter

    Server層級許可權

    • CONNECT SQL

    • ALTER ANY LOGIN

    • ALTER ANY LINKED SERVER

    • ALTER ANY CONNECTION

    • ALTER TRACE

    • VIEW ANY DATABASE

    • VIEW SERVER STATE

    • ALTER SERVER STATE

    Database層級許可權

    • CONNECT

    • SHOWPLAN

    • SELECT

    • INSERT

    • UPDATE

    • DELETE

    • KILL DATABASE CONNECTION

    • VIEW ANY COLUMN ENCRYPTION KEY DEFINITION

    • VIEW ANY COLUMN MASTER KEY DEFINITION

    • VIEW DATABASE STATE

    超級許可權帳號

    所有資料庫

    所有許可權

    • Server層級角色:sysadmin

    • Database層級角色:db_owner

    Server層級許可權

    • CONNECT SQL

    • SHUTDOWN

    • CREATE ENDPOINT

    • CREATE ANY DATABASE

    • CREATE AVAILABILITY GROUP

    • ALTER ANY LOGIN

    • ALTER ANY CREDENTIAL

    • ALTER ANY ENDPOINT

    • ALTER ANY LINKED SERVER

    • ALTER ANY CONNECTION

    • ALTER ANY DATABASE

    • ALTER RESOURCES

    • ALTER SETTINGS

    • ALTER TRACE

    • ALTER ANY AVAILABILITY GROUP

    • ADMINISTER BULK OPERATIONS

    • AUTHENTICATE SERVER

    • EXTERNAL ACCESS ASSEMBLY

    • VIEW ANY DATABASE

    • VIEW ANY DEFINITION

    • VIEW SERVER STATE

    • CREATE DDL EVENT NOTIFICATION

    • CREATE TRACE EVENT NOTIFICATION

    • ALTER ANY EVENT NOTIFICATION

    • ALTER SERVER STATE

    • UNSAFE ASSEMBLY

    • ALTER ANY SERVER AUDIT

    • CREATE SERVER ROLE

    • ALTER ANY SERVER ROLE

    • ALTER ANY EVENT SESSION

    • CONNECT ANY DATABASE

    • IMPERSONATE ANY LOGIN

    • SELECT ALL USER SECURABLES

    • CONTROL SERVER

    Database層級許可權

    • CREATE TABLE

    • CREATE VIEW

    • CREATE PROCEDURE

    • CREATE FUNCTION

    • CREATE RULE

    • CREATE DEFAULT

    • BACKUP DATABASE

    • BACKUP LOG

    • CREATE DATABASE

    • CREATE TYPE

    • CREATE ASSEMBLY

    • CREATE XML SCHEMA COLLECTION

    • CREATE SCHEMA

    • CREATE SYNONYM

    • CREATE AGGREGATE

    • CREATE ROLE

    • CREATE MESSAGE TYPE

    • CREATE SERVICE

    • CREATE CONTRACT

    • CREATE REMOTE SERVICE BINDING

    • CREATE ROUTE

    • CREATE QUEUE

    • CREATE SYMMETRIC KEY

    • CREATE ASYMMETRIC KEY

    • CREATE FULLTEXT CATALOG

    • CREATE CERTIFICATE

    • CREATE DATABASE DDL EVENT NOTIFICATION

    • CONNECT

    • CONNECT REPLICATION

    • CHECKPOINT

    • SUBSCRIBE QUERY NOTIFICATIONS

    • AUTHENTICATE

    • SHOWPLAN

    • ALTER ANY USER

    • ALTER ANY ROLE

    • ALTER ANY APPLICATION ROLE

    • ALTER ANY COLUMN ENCRYPTION KEY

    • ALTER ANY COLUMN MASTER KEY

    • ALTER ANY SCHEMA

    • ALTER ANY ASSEMBLY

    • ALTER ANY DATABASE SCOPED CONFIGURATION

    • ALTER ANY DATASPACE

    • ALTER ANY EXTERNAL DATA SOURCE

    • ALTER ANY EXTERNAL FILE FORMAT

    • ALTER ANY MESSAGE TYPE

    • ALTER ANY CONTRACT

    • ALTER ANY SERVICE

    • ALTER ANY REMOTE SERVICE BINDING

    • ALTER ANY ROUTE

    • ALTER ANY FULLTEXT CATALOG

    • ALTER ANY SYMMETRIC KEY

    • ALTER ANY ASYMMETRIC KEY

    • ALTER ANY CERTIFICATE

    • ALTER ANY SECURITY POLICY

    • SELECT

    • INSERT

    • UPDATE

    • DELETE

    • REFERENCES

    • EXECUTE

    • ALTER ANY DATABASE DDL TRIGGER

    • ALTER ANY DATABASE EVENT NOTIFICATION

    • ALTER ANY DATABASE AUDIT

    • ALTER ANY DATABASE EVENT SESSION

    • KILL DATABASE CONNECTION

    • VIEW ANY COLUMN ENCRYPTION KEY DEFINITION

    • VIEW ANY COLUMN MASTER KEY DEFINITION

    • VIEW DATABASE STATE

    • VIEW DEFINITION

    • TAKE OWNERSHIP

    • ALTER

    • ALTER ANY MASK

    • UNMASK

    • EXECUTE ANY EXTERNAL SCRIPT

    • CONTROL