System roles are built-in roles that are automatically created in each newly created
database.
System roles:
- Are automatically created in a new database.
- Cannot be dropped.
- Cannot have their default underlying system privileges modified or revoked.
- Additional roles and system privileges can be granted to and revoked from a
system role.
- Cannot be granted with administrative rights (WITH ADMIN OPTION or WITH ADMIN
ONLY OPTION clauses).
- Have no password assigned, so it is not possible to connect to the database as a
grantable system role.
- With the exception of the SYS, dbo, and rs_systabgroup role, do not own
objects.