Post reply

sql server 2000 logins

  • October 15, 2009 at 6:07 am

    #94020

    We have two AD (windows 2003) domains: CORPAD and UKCORP

    In the SQL server 2000, we have

    these logins:

    CORPAD/user1

    CORPAD/user2

    CORPAD/user3

    We would like to change these to

    UKCORP/user1

    UKCORP/user2

    UKCORP/user3

    I would be really grateful if you could assist me to solve this.

    Regards

    Mir

  • October 15, 2009 at 9:35 am

    #1066348

    We had to do this last year when we moved to a new domain. We modified the logins on each SQL Server instance. Here's how we handled it:

    1. Create new logins in new domain (our network administrators did this so I don't know the details)

    2. Add the new logins to the SQL Server instance and give it the same database access and user

    permissions as the existing login. You can find various scipts in the Scripts section to output

    logins, roles, and users.

    3. Delete the old logins from the instance.

    Greg

  • October 15, 2009 at 9:54 am

    #1066367

    Dear Greg,

    Thank you so much for your help.

    We are not changing the server. We are just changing domain.

    We had one domain

    CORPAD. So sql server logins are associated with CORPAD.

    eg. CORPAD\Account1

    CORPAD\ Account2

    Now the new domain is UKCORP. So we would like to associte UKCORP WITH sql server logins ( We will not use old domain anymore).

    We have to match existing db users with this new account ( eg. UKCORP\Account1)

    Can I create UKCORP\Account1 and change the sid to CORPAD\Account1's sid, so that existing dbusers can be mapped automatically?

    As a newbie, I am confused. Could you please provide me any easy script to achieve this.

    Regards,

    Mir

  • October 15, 2009 at 9:56 am

    #1066370

    Greg Charles (10/15/2009)

    2. Add the new logins to the SQL Server instance and give it the same database access and user

    permissions as the existing login. You can find various scipts in the Scripts section to output

    logins, roles, and users.

    Dear Greg,

    Could you please explain this point.

    Regards,

    Mir

  • October 15, 2009 at 3:43 pm

    #1066590

    Hi Mir,

    My original post assumed that the two domains would coexist for a period of time so you could add the new domain logins to SQL Server and duplicate the permissions that the old domain logins have. Then you could delete the old domain logins.

    I don't have the scripts that we used in 2007 to copy the permissions. That's why I suggested you look in the Scripts section here.

    Greg

  • October 16, 2009 at 3:29 pm

    #1067247

    Hi

    You can use this beow script for creating new logins and map the permission to the respective databases.

    CREATE LOGIN [<domainName>\<loginName>] FROM WINDOWS;

    GO

    May be useful.

    Thanks

Viewing 6 posts - 1 through 5 (of 5 total)

You must be logged in to reply to this topic. Login to reply