Instance Architecture | Account Type | Database Permission | Role Description |
Two-node (formerly High Availability/Cluster Edition) | Privileged account | Instance admin account, which has the owner permissions of all databases by default. | Server-level roles: securityadmin processadmin dbcreatorDatabase-level roles: db_owner |
| Standard account | Owner | Server-level roles: securityadmin processadmin dbcreatorDatabase-level roles: db_owner |
| | Read/Write | Server-level roles: securityadmin processadmin dbcreatorDatabase-level roles: db_reader db_writer |
| | Read-only | Server-level roles: securityadmin processadmin dbcreatorDatabase-level roles: db_reader |
| Designated account | A designated account can only view and own the specified database. A designated account can be authorized to multiple databases, but a database can be authorized to only one designated account. | Server-level roles: securityadmin processadmin dbcreatorDatabase-level roles: db_owner |
Instance Architecture | Account Type | Database Permission | Role Description |
Single-node (formerly Basic Edition) | Admin account | Instance admin account, which has the highest-level sysadmin permission and the owner permissions of all databases. After the admin account is enabled, the product SLA will no longer be guaranteed. | Server-level roles: sysadminDatabase-level roles: db_owner |
| Privileged account | It has the owner permissions of all databases by default. | Server-level roles: securityadmin processadmin dbcreatorDatabase-level roles: db_owner |
| Standard account | Owner | Server-level roles: securityadmin processadmin dbcreatorDatabase-level roles: db_owner |
| | Read/Write | Server-level roles: securityadmin processadmin dbcreatorDatabase-level roles: db_reader db_writer |
| | Read-only | Server-level roles: securityadmin processadmin dbcreatorDatabase-level roles: db_reader |
| Designated account | A designated account can only view and own the specified database. A designated account can be authorized to multiple databases, but a database can be authorized to only one designated account. | Server-level roles: securityadmin processadmin dbcreatorDatabase-level roles: db_owner |
Was this page helpful?