Deny Connect problem

Question

Deny Connect problem

Brandie Tarvin

SSC Guru

Points: 173132
More actions
December 5, 2025 at 8:24 pm

#4695098

I have a login I need to deny connect to on a server, but it is "hidden" inside a Windows Security Group instead of directly added to SQL Server security.
I cannot deny connect to the whole group. I need to specifically not allow this specific login to connect to this server. But when I try to run DENY CONNECT SQL TO ThisLogin; it fails because the login doesn't exist on the server.
Any thoughts on how I can get this done?
Brandie Tarvin, MCITP Database AdministratorLiveJournal Blog: http://brandietarvin.livejournal.com/[/url]On LinkedIn!, Google+, and Twitter.Freelance Writer: ShadowrunLatchkeys: Nevermore, Latchkeys: The Bootleg War, and Latchkeys: Roscoes in the Night are now available on Nook and Kindle.

Viewing 5 posts - 1 through 5 (of 5 total)

You must be logged in to reply to this topic. Login to reply

Brandie Tarvin SSC Guru Points: 173132 More actions · Answer 1

Nevermind. I needed to leave out the SQL keyword.

Brandie Tarvin, MCITP Database AdministratorLiveJournal Blog: http://brandietarvin.livejournal.com/[/url]On LinkedIn!, Google+, and Twitter.Freelance Writer: ShadowrunLatchkeys: Nevermore, Latchkeys: The Bootleg War, and Latchkeys: Roscoes in the Night are now available on Nook and Kindle.

mamta25 Grasshopper Points: 20 More actions · Answer 2

Hey,

Create a login for the user on the server and deny access so they can not connect, even if their group has permission.

MMartin1 One Orange Chip Points: 27878 More actions · Answer 3

Brandie Tarvin wrote:

Nevermind. I needed to leave out the SQL keyword.

I'm curious on the solution details. If you have a login already for this one windows account, could you not just deny 'Connect SQL' ?

----------------------------------------------------

Brandie Tarvin SSC Guru Points: 173132 More actions · Answer 4

The solution is DENY CONNECT TO <ThisLogin>;

I just had to remove "SQL" from the code.

What can I say? I was having an off day.

Brandie Tarvin, MCITP Database AdministratorLiveJournal Blog: http://brandietarvin.livejournal.com/[/url]On LinkedIn!, Google+, and Twitter.Freelance Writer: ShadowrunLatchkeys: Nevermore, Latchkeys: The Bootleg War, and Latchkeys: Roscoes in the Night are now available on Nook and Kindle.