SQL Server – User Logins (user mapping)
SQL Server allows for the creation of user logins. Each individual who needs access to SQL Server can be given their own user account.
When the administrator configures these user logins, he/she can assign them to any number of roles and schemas, depending on the access that the individual is entitled to.
In this lesson, we will walk through the steps in creating a user login.
To Create a New User Login
- Using SQL Server Management Studio, expand the “Security” option and right click on “Logins”
- Click on “New Login”
- Complete the login properties in the “General” tab by providing a name for the login, choosing the Authentication method (providing a password if you choose “SQL Server authentication”), and selecting the database to use as a default. If you don’t choose a language, it will use the default for the current installation of SQL Server.
If you get an error that reads “The MUST_CHANGE option is not supported by this version of Microsoft Windows”, simply uncheck the “User must change password at next login” option. The error occurs because your operating system doesn’t support this option.
- Click the “Server Roles” tab if you need to apply any server-wide security privileges.
- Click the “User Mapping” tab to specify which databases this user account is allowed to access. By default, the login will be assigned to the “Public” role, which provides the login with basic access. If the login needs more access in one or more databases, it can be assigned to another role with greater privileges.Note that these roles are “Database Roles” and are different to the server roles in the previous tab. Server roles are for administering the SQL Server. Database roles are created within each database and specify what the login can do within that database.