Hello All,

My question is regarding access control for SQL Server via Active Directory Group policies.

Let's say you are using Windows Authentication to allow users to log into SQL Server and active directory is the method of authentication. Is there a way to specifiy access control rules for SQL Server from within Active Directory? For example, say I want a certain group to only read database tables and execute stored procedures but not be able to directly write data into the database. Can I specify these rules using Active Directory Group policies?