Hello experts,
A client just reported the following puzzling error.
There is a user ABC\user1 that was added to the AD group ABC\foo_db_readers.
The group ABC\foo_db_readers was added to the user-defined database role db_foo_datareader, which has read access to foo_db. The client's goal with this setup is to avoid having to create the login ABC\user1 on the SQL Server and organize access via the AD groups.
But when ABC\user1 tries to connect to the database, this error is returned:
Login failed for user 'ABC\user1'. Reason: Could not find a login matching the name provided. [CLIENT: ...
Does anyone know how I can troubleshoot this? I must be missing something about the security involved, but I don't know what.
Thanks for any help.
-- webrunner
-------------------
A SQL query walks into a bar and sees two tables. He walks up to them and asks, "Can I join you?"
Ref.: http://tkyte.blogspot.com/2009/02/sql-joke.html
Never mind. I think this is the answer: There seemed to be some lag time where AD needed to synchronize the info. The user can now log in successfully. I will mark this as the answer in case anyone else runs across this behavior.
-- webrunner
-------------------
A SQL query walks into a bar and sees two tables. He walks up to them and asks, "Can I join you?"
Ref.: http://tkyte.blogspot.com/2009/02/sql-joke.html
Viewing 2 posts - 1 through 1 (of 1 total)
You must be logged in to reply to this topic. Login to reply