| title | Guest Permissions on User Databases | Microsoft Docs | |
|---|---|---|
| ms.custom | ||
| ms.date | 03/01/2017 | |
| ms.prod | sql | |
| ms.prod_service | database-engine | |
| ms.reviewer | ||
| ms.technology | security | |
| ms.topic | conceptual | |
| helpviewer_keywords |
|
|
| ms.assetid | 540f1c6d-df51-497e-958a-3a0f429d2920 | |
| author | VanMSFT | |
| ms.author | vanto |
[!INCLUDEappliesto-ss-xxxx-xxxx-xxx-md] This rule determines whether the guest user has permission to access the database. This rule applies to user databases only.
Revoke the guest user permission to access the database if it is not required.
The guest user cannot be dropped, but guest user can be disabled by revoking its CONNECT permission by executing REVOKE CONNECT FROM GUEST within any database other than master, tempdb, or msdb.
Monitor and Enforce Best Practices by Using Policy-Based Management