Database.Deny Method (DatabasePermissionSet, String, Boolean)

 

Denies the specified set of permissions for the specified grantee and other users who the grantee granted the specified set of permissions on the database.

Namespace:   Microsoft.SqlServer.Management.Smo
Assembly:  Microsoft.SqlServer.Smo (in Microsoft.SqlServer.Smo.dll)

member Deny : 
        permission:DatabasePermissionSet *
        granteeName:string *
        cascade:bool -> unit

Parameters

permission
Type: Microsoft.SqlServer.Management.Smo.DatabasePermissionSet

A DatabasePermissionSet object value that specifies the set of permissions.

granteeName
Type: System.String

A String value that specifies the grantee to be denied the specified set of permissions on the database.

cascade
Type: System.Boolean

A Boolean property that specifies whether users, to whom the grantee granted the specified set of permission, are also denied access to the specified set of permissions on the database.

If True, the grantee and users to which the grantee granted the specified set of permissions are all denied the specified set of permissions. If False, only the grantee is denied the specified set of permissions.

The example shows how to use the Deny method with server permissions. The method is used in the same way with database permissions.

VB

PowerShell

$srv = new-Object Microsoft.SqlServer.Management.Smo.Server("(local)")
$arg = [Microsoft.SqlServer.Management.Smo.ServerPermission]::CreateEndpoint

$sps = new-object Microsoft.SqlServer.Management.Smo.ServerPermissionSet([Microsoft.SqlServer.Management.Smo.ServerPermission]::CreateEndpoint)
$sps.Add([Microsoft.SqlServer.Management.Smo.ServerPermission]::AlterAnyEndpoint)
$spis = $srv.EnumServerPermissions("vGrantee", $sps)
Write-Host "=================Before revoke==========================="
Foreach ($spi In $spis)
{
   Write-Host $spi.Grantee "has" $spi.PermissionType " permission."
}
Write-Host " "
$sps.Remove([Microsoft.SqlServer.Management.Smo.ServerPermission]::CreateEndpoint)
Return to top
Show: