February 21, 2006 at 2:58 am
I'm using an AD security group to gain read rights to a SQL server 2000 database using the db_datareader database role.
So far, I've had no problems until I added a new user to the AD security group. This new user cannot access the database at all.
I've checked the PDC to make sure the user is definitely a member of the group and they are. This is also confirmed by the fact that they can open a VB.NET windows application which is configured to throw them out if they're not a member of the same security group.
I'm at a loss on how to proceed. Any help would gratefully be appreciated.
February 21, 2006 at 7:58 am
Make sure the user logout and login, or reboot, to gain the new credential.
February 21, 2006 at 1:04 pm
I should have mentioned I added the new user to the AD security group about a week before they tried to access the SQL database.
Wouldn't this have given them plenty of time for the credentials to have propagated around the domain?
February 23, 2006 at 2:14 am
You can check if sqlserver finds the group using Query ananlyser.
connect to the server position in the database
and execute :
use yourdb
go
EXEC master..xp_logininfo @acctname = 'yourdomain\yourgroup',@option = 'members' -- who belongs to this windowsgroup
go
Johan
Learn to play, play to learn !
Dont drive faster than your guardian angel can fly ...
but keeping both feet on the ground wont get you anywhere :w00t:
- How to post Performance Problems
- How to post data/code to get the best help[/url]
- How to prevent a sore throat after hours of presenting ppt
press F1 for solution, press shift+F1 for urgent solution 😀
Need a bit of Powershell? How about this
Who am I ? Sometimes this is me but most of the time this is me
Viewing 4 posts - 1 through 3 (of 3 total)
You must be logged in to reply to this topic. Login to reply