(Windows only) Assigns SAP ASE roles or default permissions to Windows users and groups when Integrated Security mode or Mixed mode (with Named Pipes) is active.
sp_grantlogin {login_name | group_name} ["role_list" | default]
sp_grantlogin jeanluc, oper_role
sp_grantlogin valle
sp_grantlogin Administrators, "sa_role sso_role"
You must create the Windows login name or group before assigning roles with sp_grantlogin. See your Windows documentation for details.
sp_grantlogin is active only when the SAP ASE server is running in Integrated Security mode or Mixed mode when the connection is Named Pipes. If the SAP ASE server is running under Standard mode or Mixed mode with a connection other than Named Pipes, use grant instead.
If you do not specify a role_list or default, the procedure automatically assigns the default value.
The default value does not indicate an SAP ASE role. It specifies that the user or group should receive any permissions that were assigned to it via the grant command.
Using sp_grantlogin with an existing login_name or group_name overwrites the user’s or group’s existing roles.
See also
grant, setuser in Reference Manual: Commands
The permission checks for sp_grantlogin differ based on your granular permissions settings.
Setting | Description |
---|---|
Enabled | With granular permissions enabled, you must be a user with manage roles privilege. |
Disabled | With granular permissions disabled, you must be a user with sa_role. |
Values in event and extrainfo columns from the sysaudits table are:
Information | Values |
---|---|
Event | 38 |
Audit option | exec_procedure |
Command or access audited | Execution of a procedure |
Information in extrainfo |
|