Minimum SQL permissions

The minimum SQL permissions required on the Blue Prism database for normal operation are:

db_datareader
db_datawriter
All roles prefixed with bpa_. For example:
- bpa_ExecuteSP_DataSource_bpSystem
- bpa_ExecuteSP_DataSource_custom
- bpa_ExecuteSP_System

The roles prefixed “bpa_” are only available once the database has been configured using the in-product Create Database functions or manually using the CreateScript.

The minimum SQL permissions do not provide appropriate privileges to carry out Create, Configure or Upgrade database actions from within the product, therefore an appropriate administrator account will need to be used when any of these actions are required:

Create database – sysadmin (server role)
Configure database – sysadmin (server role) or dbowner (database role)
Upgrade database:
- When deleting the existing database – sysadmin (server role)
- When not deleting the existing database – sysadmin (server role) or dbowner (database role)

To manually execute the Create or Upgrade database scripts (available via Blue Prism Support) against an existing database, the following SQL permissions are required by the user carrying out the actions:

DBCreate: sysadmin (server role)
DBUpgrade: sysadmin (server role) or dbowner (database role)
- When deleting the existing database – sysadmin (server role)
- When not deleting the existing database – sysadmin (server role) or dbowner (database role)

	Click here to see the documentation for all Blue Prism products.
© 2024 Blue Prism Limited \| Last updated on 07 May 2024