I have a SQL 2016 server that a database that has CDC enabled in a production environment. It was enabled during development and the changes got propagated into production. The feature tracks three tables in the database and now the security folks are flagging that the 'public' role having select permissions in the '
cdc' schema with name like
fn_cdc_get_all_changes* as security violations. I need to provide documentation as to why the public database role needs this but can't find any real good documentation on what happens when CDC is turned on and why so I can keep these guys happy.
Thanks in advance.