SQL Database Roles
Introduction
Section titled “Introduction”This document will explain the CapaInstaller SQL Database roles CMS_Admin, CMS_Sync, CMS_User_Writer, and CMS_User_Reader. These SQL Database roles are created from the Setup Wizard and are created to make it easy to give a user or computer login the proper permissions to elements in the SQL database.
Below is each of the server CapaInstaller SQL Database roles explained.
| Element | Description |
| CMS_Admin | This role is for logins used for Admins in the CapaInstaller Console and Management Portal. It could be the administrator of the CapaInstaller installation. |
| CMS_Sync | This role is for logins for Services. It could be the Synchronization Service, Front-end Service, or Patch Management Service. |
| CMS_User_Writer | This role is for logins used by users in the CapaInstaller Console, where the user should have permission to write changes to the database. |
| CMS_User_Reader | This role is for logins used by users in the CapaInstaller Console, where the user should only have permission to read from the database. |
These SQL Database roles cannot be used as the only SQL Security on the SQL Server. You still need to set up permissions on your users and login
To add a user to a role, giving permission from the role to the user, you can use the following SQL query. ALTER ROLE [Role name] ADD MEMBER [username].
| If you want to… | You can… |
| Learn about needed permissions to run Setup Wizard | SQL Server Permission configuration for Setup Wizard. |
| Read more about SQL Roles | Go to MSDN |