发表新帖
发表新帖

Check users in a security group in SQL Server

前端 未结
关注
6 2061
情歌与酒
情歌与酒 2020-12-30 04:42

In the Security/Users folder in my database, I have a bunch of security groups, include \"MyApplication Users\". I need to check if I am (or another user is) in this group,

相关标签:
6条回答
  • 醉酒成梦
    2020-12-30 05:17

    Accepted answer from DeanG is the preferred solution for getting this info within SQL Server

    You can use Active Directory tools for this. I like Active Directory Users and Computers that is part of the Remote Server Administration Tools. Follow the link to download and install the tools on Windows 7.

    Once installed, you can search for a specific group name:

    Search

    Then you can see group membership using the Members tab:

    Members

    If you don't want to use the AD browser packaged with RSA tools, there are several others available.

    0 讨论(0)
  • 暖寄归人
    2020-12-30 05:20

    The code that is provided on the Microsoft page here works for me, every time.

    SELECT DP1.name AS DatabaseRoleName,   
   isnull (DP2.name, 'No members') AS DatabaseUserName   
 FROM sys.database_role_members AS DRM  
 RIGHT OUTER JOIN sys.database_principals AS DP1  
   ON DRM.role_principal_id = DP1.principal_id  
 LEFT OUTER JOIN sys.database_principals AS DP2  
   ON DRM.member_principal_id = DP2.principal_id  
WHERE DP1.type = 'R'
ORDER BY DP1.name;

    Please let me know if this works for you!

    0 讨论(0)
  • 南笙
    2020-12-30 05:21

    To find the AD Group members in the Instance, we can use below query:

    xp_logininfo 'DomainName\AD_GroupName', 'members'

    By using this query, we can find the below states.

    account name, type, privilege, mapped login name, permission path
    0 讨论(0)
  • 日久生厌
    2020-12-30 05:25

    You don't.

    Instead you use the users and groups to grant/deny privileges, and let the engine enforce them appropiately. Attempting to roll your own security will get you nowhere fast. A banal example is when you will fail to honor the 'one deny trumps all grants' rule. And you will fail to navigate the intricacies of EXECUTE AS. Not to mention security based on module signatures.

    For the record: users, roles and groups are exposed in the sys.database_principals catalog view. sys.fn_my_permissions will return the current context permissions on a specific securable.

    0 讨论(0)
  • 梦毁少年i
    2020-12-30 05:27

    Checking yourself or the current user:

    SELECT IS_MEMBER('[group or role]')

    A result of 1 = yes,0 = no, and null = the group or role queried is not valid.

    To get a list of the users, try xp_logininfo if extended procs are enabled and the group in question is a windows group :

    EXEC master..xp_logininfo 
@acctname = '[group]',
@option = 'members'
    0 讨论(0)
  • 别跟我提以往
    2020-12-30 05:29

    For a quick view of which groups / roles the current user is a member of;

    select
      [principal_id]
    , [name]
    , [type_desc]
    , is_member(name) as [is_member]
from [sys].[database_principals]
where [type] in ('R','G')
order by [is_member] desc,[type],[name]
    0 讨论(0)
 看不清?
提交回复
热议问题