Consider the following scenario:
You create a user-defined data type in the model database.
A user who is a not a system administrator tries to use this data type to create a temporary table in the model database.
In this scenario, the user will get the following error message
Msg 15247, Level 16, State 4, Server <Server name>, Line 1
User does not have permission to perform this action.
The Books Online topic for CREATE TABLE has the following note under Permissions section:
If any columns in the CREATE TABLE statement are defined to be of a CLR user-defined type, either ownership of the type or REFERENCES permission on it is required.
This note is true not only for CLR data types but also for any user-defined data type (UDT). Refer to the topic titled “Using User-defined Types Across Databases” in the SQL Server Books Online regarding the behavior of CLR data types.
NOTE: You encounter this problem only when explicitly creating tables and not when implicitly creating tables using SELECT INTO statements.
Grant permissions for user defined data type to the appropriate users as suggested in the Cause section. You can also workaround the problem by using one of the following methods.
Method 1: Grant REFERENCES permission to the public user in the model database.
CREATE TYPE dbo.udt_money FROM varchar(11) NOT NULL ;
GRANT REFERENCES ON TYPE::dbo.udt_money TO public
NOTE: Before using this method carefully evaluate the security implications since this permission gets carried over to every new database.
Method 2: If you do not want every new database to retain the definition and permissions for this user- defined data type, you can use a startup stored procedure to create and assign the appropriate permissions only in tempdb database.
CREATE PROCEDURE setup_udt_in_tempdb
EXEC ( 'USE tempdb;
CREATE TYPE dbo.udt_money FROM varchar(11) NOT NULL;
GRANT REFERENCES ON TYPE::dbo.udt_money TO public;')
EXEC sp_procoption 'setup_udt_in_tempdb' , 'startup' , 'on'
Instead of using temporary tables, consider using table variables when you need to reference user-defined data types for temporary storage needs. For table variables to reference user-defined data types, you do not need to explicitly grant permissions for the user-defined data type.