Re: General permission question
- From: "Richard Mueller [MVP]" <rlmueller-nospam@xxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 17 Dec 2007 22:56:09 -0600
"Snowmizer" <Snowmizer@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:E734951E-921A-4760-98B9-45497F835A6A@xxxxxxxxxxxxxxxx
Here's my scenario:
I have a user in my Active Directory. This user is a part of two different
groups in AD. These AD groups have a logon in my SQL Server 2005 database.
These two groups both have rights to a particular table in my database.
One
group has select only rights and the other has select, insert, update
rights
on the same table.
I have an application that is accessing this table (updating data in the
table). When my user tries to run this application they are getting a
message
that they don't have "Update" permissions on the table. This despite the
fact
that even though they are a member of the group that only has select
permissions they are also a member of the group that has select, insert,
and
update permissions.
I also have this same scenario on my SQL Server 2000 database and things
work fine.
My explanation for this is that SQL Server 2005 uses "most restrictive
permissions win". Is this accurate?
Thanks.
No. Doesn't make sense.
--
Richard Mueller
Microsoft MVP Scripting and ADSI
Hilltop Lab - http://www.rlmueller.net
--
.
- Prev by Date: Re: Event ID 28005; Error 15517
- Next by Date: Re: General permission question
- Previous by thread: Event ID 28005; Error 15517
- Next by thread: Re: General permission question
- Index(es):
Relevant Pages
|
