System Roles

System roles are built-in roles that are automatically created in each newly created database.

• Granting dbo System Role
  The dbo system role owns many system stored procedures and views.
• Granting diagnostics System Role
  Members of the diagnostics role inherit SELECT, INSERT, UPDATE, DELETE, and ALTER privileges on diagnostic tables and views.
• Granting PUBLIC System Role
  The PUBLIC system role has SELECT permission on the system tables.
• Granting rs_systabgroup System Role
  This role owns tables and system procedures required for Replication Server and grants users the underlying system privileges to perform replication server functionality.
• Granting SYS System Role
  The SYS role owns the system tables and views for the database, which contain the full description of database schema, including all database objects and all user IDs.
• Granting SYS_REPLICATION_ADMIN_ROLE
  This role is required for performing administration tasks related to replication such as granting replication roles, managing publications, subscriptions, synchronization users and profiles, managing message types, setting replication-related options, and so on.
• Granting SYS_RUN_REPLICATION_ROLE
  This role is required for performing replication tasks using dbremote and synchronization tasks using dbmlsync.
• Granting SYS_SPATIAL_ADMIN_ROLE System Role
  Grants users the ability to create, alter, drop, or comment on spatial reference systems and spatial units of measure. The SYS_SPATIAL_ADMIN_ROLE is the owner of all spatial objects.
• Revoking a System Role
  Revoke a system role from a user or role.