Steps to create a read only SQL user account for the Acctivate database
Acctivate connects to the Microsoft SQL Server database using a single SQL Server user account with full access. You may need to configure additional SQL Server user accounts for other applications to restrict data access.
The following instructions are based on Microsoft SQL Server 2005 Express, but you’ll find the procedures to be very similar for other versions and/or editions.
- Log in to the primary computer (i.e. server) where Acctivate is installed with a Windows user account with administrator privileges.
- Open Microsoft SQL Server Management Studio from Windows Start menu, in the Microsoft SQL Server folder.
- Select (local)\ACCTIVATE as the Server Name on the Connect to Server window, make sure Windows Authentication is selected and click Connect
- Expand the Securityfolder in the panel on the left
- Right-click on the Logins folder and select New Login…
- Enter the desired Login name(i.e. Website)
- Select the SQL Server authenticationoption
- Enter and Confirm the desired password.
- Un-check the User must change password at next loginoption
- NOTE: You may also want to un-check the Enforce password policy option
- Select the Default databasethat corresponds to your Acctivate company
- Click User Mapping in the panel on the left
- Check the Map box adjacent to the database for each Acctivate company to grant access
- NOTE: You can check the db_datareader option to provide full read-only access to the entire Acctivate database. Otherwise, use the procedures below to grant access to specific data views.
Click OK to save and close
Use the following procedure to provide access to specific Acctivate data views:
- Follow steps 1-3 above to open SQL Server Management Studio
- Expand the Databasesfolder in the panel on the left
- Expand the database that corresponds to the Acctivate company (e.g., ACCTivate$Demo)
- Expand the Views folder
- Grant permission to each data view for the SQL Server user account:
- Right-click on the view and click Properties
- Click Permissionsin the list on the left
- Click Search…on the right and enter the new SQL Server login you created in step 5 above
- Click Check Names then OK
- Check the Grant box for the Select permission and click OK
- Repeat step 9 for each data view