Re: db_denydatawriter

Hi Erland,

Thank you very much for all the support & interest you gave to this issue.
We resolved the problem here.
I found out that for some reason our IOS team had given her local admin
rights to the server on which SQL Server is hosted. This overrode the SQL
Server permissions. Once she had her local admin revoked, her SQL roles
behaved as expected.

My Apologies for this.

Thank you very much however. You taught me a lot any way.

Cheers
Ant

"Erland Sommarskog" wrote:

Ant (Ant@xxxxxxxxxxxxxxxxxxxxxxxxx) writes:
Hi Erland, sorry for the late response. I had to wait till Monday to be
back in the office.

I did an update on her PC logged in as her & I could update, so yes,
deny_Writer is not restricting her to Update .

I checked her permissions & she definitely has only Public,
db_denyWriter & db_reader.

When I ran sp_who2, I could see her login & her host name.

Sorry to be vague about this but I really am not sure why she can Update.

Can you run this query in the database in question:

select g.name, u.name
from sysusers u
join sysmembers m ON u.uid = m.memberuid
join sysusers g ON g.uid = m.groupuid
where u.name = 'herusername'

Also run this:

SELECT xstatus FROM master..sysxlogins WHERE name = 'herlogin'

Is she using an SQL login or a Windows login?


--
Erland Sommarskog, SQL Server MVP, esquel@xxxxxxxxxxxxx

Books Online for SQL Server 2005 at
http://www.microsoft.com/technet/prodtechnol/sql/2005/downloads/books.mspx
Books Online for SQL Server 2000 at
http://www.microsoft.com/sql/prodinfo/previousversions/books.mspx

.

Relevant Pages

  • Re: db_denydatawriter
    ... I could see her login & her host name. ... join sysmembers m ON u.uid = m.memberuid ... Erland Sommarskog, SQL Server MVP, esquel@xxxxxxxxxxxxx ... Books Online for SQL Server 2005 at ...
    (microsoft.public.sqlserver.security)
  • Re: User Question
    ... and write capabilities. ... Should that be an SQL login or Windows login? ... Erland Sommarskog, SQL Server MVP, esquel@xxxxxxxxxxxxx ... Books Online for SQL Server 2005 at ...
    (microsoft.public.sqlserver.security)
  • Re: Unexpected Login Screen When Accessing SQL Data Via .NET Intra
    ... >> data and the SQL Server is on the same server. ... >> My problem is that one user has started getting a login popup ... >> right in via Windows Authentication like everyone else and like they ...
    (microsoft.public.sqlserver.connect)
  • Re: SQL 2005 express blank sa passwords
    ... that uses the Sa login, I need to set the password to blank. ... I suggest that you get a voodoo doll of that former DBA, ... Erland Sommarskog, SQL Server MVP, esquel@xxxxxxxxxxxxx ... Books Online for SQL Server 2005 at ...
    (microsoft.public.sqlserver.security)
  • Re: cannot acees two databases as owner
    ... it does not matter you are a member of the ... the sysadmin fixed server role or if there is no any other Login which is ... group if it's a domain) and you can login to your SQL Server with, ...
    (microsoft.public.sqlserver.setup)