SQL Server CDC security configuration

by Queue Mann   Last Updated May 15, 2018 18:06 PM

I have a SQL 2016 server that a database that has CDC enabled in a production environment. It was enabled during development and the changes got propagated into production. The feature tracks three tables in the database and now the security folks are flagging that the 'public' role having select permissions in the 'cdc' schema with name like fn_cdc_get_all_changes* as security violations. I need to provide documentation as to why the public database role needs this but can't find any real good documentation on what happens when CDC is turned on and why so I can keep these guys happy.

Thanks in advance.



Related Questions


Change Tracking across several Tables

Updated September 23, 2016 09:02 AM

Change Data Capture Use Case?

Updated September 23, 2017 21:06 PM

Sql server 2012 log file growth of cdc enbled db

Updated January 01, 2017 08:02 AM

CDC Capture job failure - strange error

Updated February 27, 2017 18:06 PM