Simple Security Report


May 1, 2017 by Kenneth Fisher

Quite a while ago I created a couple of little security scripts to help me out with permissions research. Over time they grew into the procedures sp_dbpermissions and sp_srvpermissions. I recently updated them to v 6.0 and one of the main reasons was so I could add an output option. And the main reason for that was so I could add a reporting option.

Every now and again I get asked to create a quick security report to answer the question: “what permissions exist on XYZ database”. Well here is. I (and you) can now answer that question quickly and easily.

EXEC sp_SrvPermissions @Output = 'Report';

EXEC sp_DBPermissions @Output = 'Report';

And there you go. It’s nothing more than a simple report that lists the principal name, a list of any roles they are a member of, and a list of any explicit grants or denies that have been applied to them. If you need something more detailed (something that can break down permissions from roles, or look into active directory and deal with AD groups for example) then you’ll need to get a paid product. Minion Enterprise for example.

2 thoughts on “Simple Security Report

  1. Bill Bergen says:

    Great scripts—thank you. Is there any way to get the scripts as shown in the blog with proper formatting.

    • I just checked and they appear to be formatted correctly. How are you copying them out? Worst case if you email me (email is in my about page) I can email you the scripts.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Enter your email address to follow this blog and receive notifications of new posts by email.

Join 3,755 other subscribers

Follow me on Twitter

ToadWorld Pro of the Month November 2013
%d bloggers like this: