I am struggling to lock down security for the sql2005 production system. For ssis users I have set up the group of developers to have in msdb db_dtsadmin, db_dtsltduser, db_dtsoperator and SQLAgentUserRole. Prior to this I had one user setup before I was able to figure the right security set up as sysadmin and he created a couple of packages that ran fine. Now that I dropped his account and he is using the group account (same login as originally just now a member of the group) his packages fail. I changed one of the packages in Integration Services under MSDB to package roll SQLAgentUserRole for both reader and writer, and it still fails...
What am I missing here? Need help!!!