Re: Minimum Permissions for sp_adduser

Hi Tom
But the OP is using SQL Server 2000
I suggested to him adding the user into securityadmin server role and try
it again, what do you think?

"Tom Moreau" <tom@xxxxxxxxxxxxxxxxxxxx> wrote in message
news:OvIpSafZJHA.552@xxxxxxxxxxxxxxxxxxxxxxx
Erland already answered this. Use CREATE USER and grant ALTER ANY USER to
the user.

--
Tom

----------------------------------------------------
Thomas A. Moreau, BSc, PhD, MCSE, MCDBA, MCITP, MCTS
SQL Server MVP
Toronto, ON Canada
https://mvp.support.microsoft.com/profile/Tom.Moreau


"Munish Narula" <munish.narula@xxxxxxxxx> wrote in message
news:67587C5B-346C-40D6-9022-02D73C9D61C2@xxxxxxxxxxxxxxxx
Hi,
I created a new user and made it a member of 3 roles. db_owner,
db_securityadmin and db_accessadmin.

But still i am not able to execute sp_adduser using this new user.

I am getting the error
"User XXX does not have permission to run DBCC auditevents"

Can u please help me with this.

"Russell Fields" wrote:

Munish

From the BOL: "Only the dbo and members of the sysadmin fixed server role
can execute sp_adduser." (I assume that dbo includes members of the
db_owner role, but I have not tested this today.)

So, within a database a dbo can add users, but granting execute on the
stored procedure will not add the rights to a non-dbo. (And, of course,
adding logins is higher rights.)

RLF

"Munish Narula" <munish.narula@xxxxxxxxx> wrote in message
news:5A0A4C20-9412-49EB-AF65-400623A2D174@xxxxxxxxxxxxxxxx
I am trying to create a new user who has the permission to create a new
user
in SQL 2000. I have greated him only the rights for excuting
sp_adduser.
But
still this user is not able to create any other user. Is this not
suffient
privilege?

What are the minimum set of privilleges required for a user to execute
sp_adduser. I am talking only about SQL 2000 here.





.

Relevant Pages

  • Re: Minimum Permissions for sp_adduser
    ... It turns out that db_owner will not do, the account must actually be the owner of the database and therefore the 'dbo' user. ... "sp_adduser" is hardcoded to reject even these rights. ... But if you change to the SQL Server 2000 preferred command, "sp_grantdbaccess" it will work for you. ... But still i am not able to execute sp_adduser using this new user. ...
    (microsoft.public.sqlserver.security)
  • RE: XP_CMDSHELL and DB Chaining
    ... You could execute xp_cmdshell without specify any rights in your stored ... SQL Server 2005 enhances the security feature. ... you can execute it in your stored procedure by specifying ... This posting is provided "AS IS" with no warranties, and confers no rights. ...
    (microsoft.public.sqlserver.security)
  • Re: Execute Persmission denied on object sp_OACreate
    ... > SQL Server is creating a job behind the scenes. ... > permissions. ... > SA account password and gaining access to the database. ... >>> How can get a user permissions to execute these stored procedures ...
    (microsoft.public.sqlserver.security)
  • RE: exec sp_help_job user account rights
    ... wrapper in which u can call original stored procedure sp_help_job using “WITH ... EXECUTE AS “ clause and then give execute permission of external stored ... Database Administrator, SQL Server 2005 ... the sysadmin fixed role can use sp_help_job to view only the jobs he/she owns. ...
    (microsoft.public.sqlserver.security)
  • Re: SSIS - OLE DB Command - how to retrieve query results ???
    ... my side according to your process, and I managed to execute the task. ... Data Destination: <My SQL Server 2005 Instance>.TestDB ... OLE DB Command: ...
    (microsoft.public.sqlserver.dts)