Recently put together a new Win2003 (R2) development server, which will be used to host SqlExpress databases, both for development and some domain users within the organization. Don't have a lot of Win server level expertise, but did manage to get SqlExpress up running and configured for remote usage. Created a db login/user account and was able to get a VB6 application connected to the database with one caveat -- I could connect to the db only as part of the local Administrator group of that server. Taking myself (or anyone else) out the Adminstrator group keeps me from connecting remotely to the database through the application. I can connect to the db remotely through Sql Express Manager using Sql Server authentication. The app itself uses Sql Server authentication, but can't seem to establish a remote connection unless I'm administrator.
Could someone please clue me in as to how to set server level permissions for specific users (or domain of users), so that the remote application can connect and open the database. I've tried setting folder level permissions on the server to no avail, and don't know how this is normally done for a Sql Server database.
Supplement: the acutal error message I get is: Cannot open database requested by the Login Source: Microsoft Native Client
I have created a login with just select permisson, I also want to give permisson to truncate a table (not delete) , for that reason I had to create a stored procedure.
CREATE procedure Sp_truncate as
truncate table Zip_Code_Lookup
I gave execute permisson for the stored procedure , but when I run this Stored procedure I get the following error Only the owner or members of the sysadmin role can truncate table 'Zip_Code_Lookup'.
GRANT SELECT ON [dbo].[TblAreaCatmap] TO [admin] prevent grant from being automaticly add to each column?
Is there a way when you issue a grant select to a table or a view to not also grant select for each column.
The problem is when you use the grant command it automaticly adds the grant command to each column. I want to grant the permission at the table level so when the table is scripted it only has a single grant command instead of a grant for the table and a grant for each column which is not needed.
The sql managemnt studion interface will allow you to do this but onlt by using the interface. If you issue the above command from a query window it also creates A GRANT FOR EVERY COLUMN. How can I stop this behavior.
I am writing a stored procedure which updates a table, but when I run the stored procedure using a login that I have granted execute privileges on, then I get a message that I cannot run an update on the table. This would happen in dynamic sql... while my SQL has parameter references, I don't think it is considered dynamic SQL?
sproc: CREATE PROCEDURE [schemaname].[SetUserCulture] @UserID int , @Culture nvarchar(10) AS UPDATE dbo.SecUser SET Culture = @Culture WHERE UserID = @UserID
In SQL Server 2005 SP2 I want to grant the ability to create views to a user but in order to do this it requires that the users has the ability to grant alter on a schema.
Is there any way to grant this privilage without granting alter on schema also?
Have a certificate and symmetric key that i have used the following to GRANT to logins. How can I find out which SQL logins have the GRANT CONTROL and GRANT VIEW DEFINTION?
GRANT VIEW DEFINITION ON SYMMETRIC KEY:: Symetric1 TO Brenda GRANT CONTROL ON CERTIFICATE:: Certificate1 to Brenda
so here i go explaining my problem: I create an empty database. then I use the .net aspregsql tool to make the tables and the procs and everything, and it does. when i view my database it has the 11 empty tables the sprocs and the roles and everything. BUT when I open up the "asp website configuration" to add some users, it gives the following error:EXECUTE permission denied on object 'aspnet_CheckSchemaVersion', database 'masfeni_fakebetsdb', owner 'dbo'.
I have created a table with .. username, password, grant username and password are nvarchar grant is a bit I want to check the availability of the username and password and then check if it is granted to access or not .. so I made a selection query for getting the grant when username ==x and password = y x=data come from another page y=data come from another page then put the selected grant or deny ( true or false) in a data set .. and then check if it is grant ( true) to complete what I want >>> else ( deny ....( false )) to return a reponse of deny username or password... but everytime the dataset is empty .. this is my code ... sqlConnection1.Open(); SqlDataAdapter da=new SqlDataAdapter("select grant_deny from users where username='"+Request.QueryString["username"]+"' and password='"+Request.QueryString["password"]+"'",sqlConnection1); da.Fill(ds,"users"); sqlConnection1.Close() if (ds.Tables[0].Rows[0]["grant_deny"].ToString()=="true") { . . . . } else { Response.write("error"); } what is wrong ..?? and if there is anyone has another solution for what I want .. I appriciate any sample code,... thanks in advance..
Can I grant select only permission on all objects in the database? I have users that I need to give view access only on stored procedures, triggers, and functions. Thanks.
I want to Grant permission for a table which is residing at another server's database. I have added the server as a linked server to my database and i am able to do all DML (Insert, Update, Delete) operations from the source server to the target server's table. But i am not able to Grant permission for the table.
I need to check if any user in the database is assigned any permissionWITH GRANT OPTION. Please let me know how do I check this. Also let meknow if assigning rights WITH GRANT OPTION is possible from enterprisemanager.Thanks in advanceKamal
Is it possible to grant all privilege for all tables of a specified database through script? Because i have to send the script to user side and i can't do it manually in Enterprise Manager.regards,
it is possible to grant all privilege (CRUD) to specified table to user. But, now, i want to grant all privilege (CRUD) of all tables, views, sp, ... of database to the user. is it possible?regards,
GRANT SEND ON SERVICE::SqlQueryNotificationService TO guestI need to run that T-SQL command to allow Query Notifications and I keep getting this error.Cannot find the service 'QueryNotificationService', because it does not exist or you do not have permission.I am logged in with my user account with Administrator rights along with just about every permission I can think of for the SQL Server account. I even logged in as SA and it also fails when trying to run this command. This is being done on SQL Express. So I also logged into my Windows 2003 Server with a fresh install of SQL Server 2005 Dev Edition and this also fails with the same error.Clearly I need some permission correction or something else is missing from both installations.Please help!
I run the following query...using sql analyzer dbo.aCVChangeSQLPassword 'user1','user1',''I am logged in as user1 in the sql analyzer...It chnages my password, in sql server, however gives me this message...Grantor does not have GRANT permission.Password changed.(1 row(s) affected)Server: Msg 4613, Level 16, State 1, Procedure aCVChangeSQLPassword, Line 27Grantor does not have GRANT permission. Line no 27 has the folliwng code that I execute...
Hi I have installed Sql server 2005. I tried to give "Create database" permission to master database I am getting an errorGrantor does not grant permission (Microsoft SQL Server, Error 4613) May I know what is the reason for this.How to resolve it. RegardsKaran
I would like to grant the MACHINENAMEASPNET user all acccess to my MSSQL database (i.e tables and stored procedures. I can do this through enterprise manager but id rather do it programatically so i can add it to my database creation script. What is the syntax for this?
I am trying to set up a security system for my senior developers where they automatically can execute any procedure. It is in the System Administrator server role. Is there any way I can grant this role to their database role withour giving them complete System Adminstrator rights?
Can anyone help me on users Access rights. The problem is I have created users called finance and sales. Sales have default database called Salesdb. Similarly finance have default database called Financedb.
The user sales created a table called 'daily_report' in salesdb and he is also belongs to the database role of db_ddladmin. The user finance doesn't have any access rights to this salesdb database and he didnot belong to any database roles in financedb itself. But I don't know, this finance user he is able access all the rights of 'daily_rep' table of salesdb database. Even the user sales has revoked all the access rights from the finance user, he still ables to modify/insert/select/delete the records of 'daily_rep' table of Salesdb database.
Can anyone help me please. Healp please. Does anybody know how to make xp cmdshell runnable for users other than Admin. It should be possible to grant execute to others, but i can't figure out how.
This is what i found:
Be aware that when you grant execute permission for xp_cmdshell to users, the users will be able to execute any operating-system command at the Windows NT command shell that the account running SQL Server (typically local system) has privilege to execute.
To restrict xp_cmdshell access to users who have administrator permission on the Windows NT-based computer where SQL Server is running, use SQL Setup or SQL Enterprise Manager to set the server options, selecting the "xp_cmdshell - Impersonates Client" option. With this option selected, only users who have connected to SQL Server via a trusted connection and are members of the local Administrators group on that computer are allowed to use xp_cmdshell. The commands run by xp_cmdshell continue to execute in the server's security context.