Microsoft SQL Server 2008 R2 Unleashed- P39:SQL Server 2005 provided a number of significant new features and enhancements over what was available in SQL Server 2000. This is not too surprising considering there was a five-year gap between these major SQL Server 2008 is not as much of a quantum leap forward from SQL Server 2005 | 324 CHAPTER 11 Security and User Administration FIGURE Server-level permissions. FIGURE The Add Objects window. All Objects of the Types option at the server level. You can see that the available objects are all scoped at the server level. If the endpoints objects are selected the securables grid is populated with all the available endpoints that have permissions to manage. Figure shows the Login Properties window with the endpoints securables populated. The TSQL Named Pipes securable is selected which allows you to specify the explicit permissions for the securable in the bottom grid. In this example the Grant and With Grant check boxes have been selected for the control permission. This gives the login named Chris the right to control the Named Pipes endpoint and also allows him to grant this control right because With Grant is selected to other logins. The examples we just walked through are related to the assignment of explicit permission on a specific instance of a securable. You can also apply server permissions at a higher Download from Managing SQL Server Permissions 325 FIGURE Server-level object types. 11 FIGURE Server-level securables. level. For example you might want to specify permissions for a login to allow that login to control all server endpoints instead of specific endpoints. You can accomplish this in several ways. One way to do it is to select the Server object from the list of object types when adding permissions for a specific login. Another way is to right-click the server name in the Object Explorer and select Properties. The Server Properties window that appears has a Permissions page that lists all the logins for the server along with the macro-level permissions scoped for the server. Figure shows the Server Properties window with the login Chris selected. The explicit permissions listed in this case are at a higher level and are not just for one instance. The example shown in Figure .