Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
Pat Shaw
Starting Member
14 Posts |
 Posted - 2011-10-26 : 08:56:14
|
| A group was created in AD and I have created a login in SQL Server for the group. At present the login only needs EXECUTE permission on one Stored Proc but this fails for each user in the group stating that the user does not have EXEC permissions to the proc. The login is a user in the database the proc resides in and has READ access. More importantly I have given the user EXECUTE permissions on the proc but it still fails. When I view the executables for the user in the database I can clearly see EXECUTE and VIEW DEFINITION for the correct proc are granted.One thing I have noticed is that when I examin the properties of the Stored Procedure itself and go to permissions I can see the user has the correct permissions in the 'Explicit' tab. If I switch to the 'Effective' tab it states "Cannot execute as the server principal because the principal 'Principal name' does not exist, this type of principal cannot be impersonated, or you do not have permission." Is this the problem here? If so, what's the solution?Thanks. |
|
|
Sachin.Nand
2937 Posts |
Posted - 2011-10-26 : 10:29:05
|
| Does the SP has any kind of dynamic SQL ?PBUH |
 |
|
|
Pat Shaw
Starting Member
14 Posts |
Posted - 2011-10-26 : 12:06:37
|
| No it doesnt. This has just been remedied though. It seems (only guessing) that the the AD Group was not functioning correctly. We created a new one exactly the same as the first and everything worked ok. Strange.Thanks for your help anyway. |
|
|
|
|
|
|
Group login cannot execute Stored Proc