I need to deny a user access to certain databases in the SQL Server 2019 instance. The user should however be able to migrate all the other databases in the instance to another instance.
- What is the safest server role to give the login?
- Is setting up a database Audit Policy the best way to monitor the user's activities as well as activities on the denied databases?
Thank you