Technology of SQL Server database (95)
Tuesday, March 03, 2009 by rain
In SQL Server,Carry out the following measure to manage SQLServer to login through SQL Server Enterprise Manager:
(1) the SQL Server Enterprise Manager that start,Click entry server proximate ' + ' mark.
(2) click security folder on the side ' + ' mark.
(3) right attack Logins icon,From option of New Login of the choice in playing a menu,SQL Server will shoot a dialog box of New Login of - of SQL Server Properties,Place of the 14-2 that be like a graph is shown.
(4) in Name the input in one-way editor casing logs onto a name,Place of the 14-2 that be like a graph is shown.
(5) if mode of attestation of identity of the choice in the option column below Authentication is using pattern of attestation of SQL Server,The password must be inputted in Password after sheet of reelection choose SQL Server Authentication chooses pushbutton so.If using pattern of NT attestation,So after sheet of reelection choose Windows NT Authentication chooses pushbutton,Must input a domain name in Domain.
(6) the middle finger of two option casing below Default gives an user the acquiescent database when login and acquiescent language.
(7) click affirmatory pushbutton,Found login.
Notice:If chose WINDOWS attestation mode,So the Zhang order that handles an input in Name option must be the login person that has built in NT or group,The format of Name is:Name of user of \ of NT network name or NT leader name \ user name.
If chose WINDWOS attestation mode and used NT network,So the region that in Domain the input logs onto Zhang date or series place belongs to;If do not have use NT network,The NT main engine that inputs place of entry Zhang date to belong to in Domain is so-called.
If chose WINDOWS attestation mode and entry Zhang date is the built-in user group in NT,For example Administators,Must input in Domain so " BUILTING " ,is not NT leader name or NT network region.
In SQL Server,Process of a few systems offerred administrative SQL Server to log onto a function,Basically include:Sp_granlogin Sp_revokelogin Sp_denyloginSp_addlogin Sp_droplogin Sp_helplogins
Will be opposite below how do these systematic processes manage login have introduction of one by one.
(1) Sp_addlogin
The entry Zhang name that establishs pattern of new attestation of use SQL Server;Its grammar format is;
Notice:The biggest length is the entry name of SQL Server and password 128 character,These character can be English letter, accord with, number.But below the entry famous general below three kinds of circumstances is regarded as to disable.
Notice:Cannot delete systematic controller SA and log onto even what receive SQL Server currently.
In if still be put in database Sysusers with the user that entry photograph matchs,be being expressed,Cannot delete this entry Zhang name.Sp_addlogin and Sp_droplogin can be used below mode of SQL Server attestation only.
Notice:Sp_granlogin and Sp_revokelogin are used only at NT attestation mode issues pair of NT users or date of user group Zhang makes set,And the entry Zhang order that cannot uphold to SQL Server has set.
(6) Sp_helplogins
Notice:There is the member that attributes Sysadmin and Securityadmin server part to just can go in the each system process of above introduction these commands.
If used NT attestation pattern,If had been some NT user or user group set the login person of SQL Server,So if delete this NT user or user group inside the country from NT,Corresponding SQL Server logins will become orphan.And entry information of its SQL Server still stores in systematic watch Syslogins.
Gu child loginning is system of SQL Server of a consist in in the watch,But the entry that is rejected by SQL Server however,Although try to found again homonymic login, also can fail,Because of its already in Syslogins of watch of consist in system.
Although log onto orphan,delete,Arrive with identical NT user or user group set again the join of SQL Server,Although you can log onto SQL Server successfully,But the limits of authority that you have place of the person that before be opposite, should login again,Unless pass the new configuration of attributive,Because log onto information to include safe identifier (SID) ,And before deleting with the SID after adding it is different.