Securables, Permissions, and Auditing
In the previous chapter, I discussed principals, which are security accounts that can access SQL Server. In this chapter, I’ll discuss and demonstrate securables and permissions. Securables are resources that SQL Server controls access to through permissions. Securables in SQL Server fall into three nested hierarchical scopes. The top level of the hierarchy is the server scope, which contains logins, databases, and endpoints. The database scope, which is contained within the server scope, controls securables such as database users, roles, certificates, and schemas. The third and innermost scope is the schema scope, which controls securables such as the schema itself, and objects within the schema such as tables, views, functions, and procedures.