Permissions

[tmf]

Can someone help me out with a permission issue?

I have a service that is running SharePoint Timer Service that is using my system account (which has admin priviledges) for startup. This works just fine.

In my SQL2005 server I have a DB that must grant permissions to this account. My SQL2005 server is using Win authentication.

If I right click on the content db and select properties and then click permissions I see two entries:
NT Authority\Local Service and
NT Authority\System.

If I attempt to add my own login it responds that it cannot locate that user.

Does anyone have any suggestions?

Thank you.

Tim

 

[Catadmin]

Have you tried MyDomain\MyUserID?


Catadmin - MCDBA, MCSA
"No, no. Yes. No, I tried that. Yes, both ways. No, I don't know. No again. Are there any more questions?"
-- Xena, "Been There, Done That"

 

[tmf]

I have used domain\uid as well.

The odd thing is that if I go to the View Server Permissions, I can see my login under the login/roles table.

I can only figure that if you are using Win authentication that the system will not allow you to enter in individual users.

Any clarification would be appreciated.

Tim

 

[Catadmin]

Windows Authentication does not distinguish between individual domain accounts and domain groups. I can guarantee that's not your problem.

Go into the Server Security and try adding the database to your user login instead of adding your login into the database. It might be an issue of trying to create a login that already exists.



Catadmin - MCDBA, MCSA
"No, no. Yes. No, I tried that. Yes, both ways. No, I don't know. No again. Are there any more questions?"
-- Xena, "Been There, Done That"

 

[tmf]

If I go into the SQL2005 db and select Security -> Logins -> [My account] -> User mappings:

I can see that the DB has dbo in the user column and the schema column. This cannot be changed to my account and shouldn't need to be since I am the dbo.

I guess my confusion is that since the server is setup with Windows Authentication, shouldn't I just be passing right through?

Tim

 

[Catadmin]

When you go to MyAcct -> user mappings, is there a check in the box next to the database you're trying to connect to? If not, check it there and hit OK.

If your login isn't actually mapped to the specific database and it doesn't have an Admin privledges in SQL Server, than it's doing exactly what it should be doing... Refusing you access to that database.

If you are mapped to that database, what permissions do you have on that database? If you only have public role permissions, that too could be a problem. You at least need read permissions to be able to get any data returned.



Catadmin - MCDBA, MCSA
"No, no. Yes. No, I tried that. Yes, both ways. No, I don't know. No again. Are there any more questions?"
-- Xena, "Been There, Done That"

 

[tmf]

The box is checked next to the db I need and I have dbo rights ro the db as well.

That is what is so strange.

All of this came about because in SharePoint you need to allow users to sign up for "Alerts" on document library's. The problem is that the alerts are not being distributed. Sp is setup correctly. The SPTimer (which is required to distribute alerts) is setup to use my account to run the service. According to the DB my account has dbo rights to the database table. I can't seem to discover where the breakdown is occuring.

Thank you again for any additional thoughts.

Regards,
Tim

 

[Catadmin]

Have you run Profiler while this is going on? Maybe it can give you a clue.



Catadmin - MCDBA, MCSA
"No, no. Yes. No, I tried that. Yes, both ways. No, I don't know. No again. Are there any more questions?"
-- Xena, "Been There, Done That"

 

[Catadmin]

Also check your Security Event Log on the Server.



Catadmin - MCDBA, MCSA
"No, no. Yes. No, I tried that. Yes, both ways. No, I don't know. No again. Are there any more questions?"
-- Xena, "Been There, Done That"