When configuring the ppm_dwh user for the data warehouse the documentation states that you need to grant this access:
GRANT ALTER ANY LOGIN TO PPM_DWH
Our DBA has informed me that:
A SQL account (ppm_dwh) was granted ALTER ANY LOGIN permission
This is an extraordinary access equivalent to a security administrator on the server. A user with this access can grant or remove any login to the server.
So I have to file an exception with our security office. They will require a valid business case and I was just wondering if someone could elaborate a bit more on why this access is essential.
In the notes it just says that The database user must be able to alter the Clarity-schema and otherwise own the database.