January 6, 2008 at 2:31 am
I have migrated a SQL 2000 to SQL 2005 server...all the users have also been created in SQL 2005. Users have database roles added for their logins for each database (Eg: db_owner,public..). They do not have the sysadmin role though. In SQL 2000 also the user didnt have that particular role.
So the problem is users do not have enough permission to create new users for example...i get a msg similar to this..:
"....you do not have permission"
Any ideas guys..? Is there a problem when transfering SQL 2000 users to SQL 2005?..
Thankx in advance..:)
January 6, 2008 at 2:34 am
were they security admins at sql2000 side ?
if yes, add them to the serverlevel security admins group.
Johan
Learn to play, play to learn !
Dont drive faster than your guardian angel can fly ...
but keeping both feet on the ground wont get you anywhere :w00t:
- How to post Performance Problems
- How to post data/code to get the best help[/url]
- How to prevent a sore throat after hours of presenting ppt
press F1 for solution, press shift+F1 for urgent solution 😀
Need a bit of Powershell? How about this
Who am I ? Sometimes this is me but most of the time this is me
January 6, 2008 at 2:42 am
These users are not security admins, they are normal users. They are given db_owner and public roles to make changes to some databases. But when one user tried to create a new login, i got that error stated above...
January 7, 2008 at 4:51 am
A db-level security admin ( member of db_securityadmin db-group) can only grant db acces to logins that are allready being granted connect at server level (by server securityadmin or sysadmin).
-- executed as login with only db access to [yourdb] and being member of the group db_owner;
use [yourdb]
go
CREATE USER [myExistingLogin] FOR LOGIN [myExistingLogin]
GO
-- Command(s) completed successfully.
CREATE LOGIN [myLogin] WITH PASSWORD=N'*****' ;
GO
-- Msg 15247, Level 16, State 1, Line 1
-- User does not have permission to perform this action.
CREATE USER [myLogin] FOR LOGIN [myLogin]
GO
-- Msg 15007, Level 16, State 1, Line 1
-- 'myLogin' is not a valid login or you do not have permission.
So logins must first be allowed access (or created) by a server level security admin.
Johan
Learn to play, play to learn !
Dont drive faster than your guardian angel can fly ...
but keeping both feet on the ground wont get you anywhere :w00t:
- How to post Performance Problems
- How to post data/code to get the best help[/url]
- How to prevent a sore throat after hours of presenting ppt
press F1 for solution, press shift+F1 for urgent solution 😀
Need a bit of Powershell? How about this
Who am I ? Sometimes this is me but most of the time this is me
Viewing 4 posts - 1 through 4 (of 4 total)
You must be logged in to reply to this topic. Login to reply