SQL Server Forums
Profile | Register | Active Topics | Members | Search | Forum FAQ
 
Register Now and get your question answered!
Username:
Password:
Save Password
Forgot your Password?

 All Forums
 General SQL Server Forums
 New to SQL Server Administration
 Delete permission Denied
 New Topic  Reply to Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

dolphin123
Yak Posting Veteran

USA
78 Posts

Posted - 08/15/2013 :  09:43:54  Show Profile  Reply with Quote
Hello,

Version: SQL server 2008
I created a Windows SQL server account, not a SQL account (i.e. added an account that is on AD.

Added "public" and "db_owner" permission to a database.

when that user runs a simple "delete" command, he gets "delete permission denied" error.

When I give him "server role" sys admin, he is able to run this command.

I really thought db_owner permission should give him to run any scripts except for some hardcore permission changed on that database.

Am I wrong? Or is something wrong with this user.

I even tried deleting his accounts from the database (Database - users) and re adding him but it doesn't work.

- D

Hommer
Aged Yak Warrior

794 Posts

Posted - 08/15/2013 :  11:41:56  Show Profile  Reply with Quote
Have you mapped or added that user to the db_owner database role?
Go to Top of Page

jeffw8713
Aged Yak Warrior

USA
808 Posts

Posted - 08/19/2013 :  14:35:41  Show Profile  Reply with Quote
Is that user a part of an AD security group - where that security group has explicitly been denied delete access to the tables?
Go to Top of Page

tkizer
Almighty SQL Goddess

USA
37457 Posts

Posted - 08/19/2013 :  15:53:41  Show Profile  Visit tkizer's Homepage  Reply with Quote
Is it simple delete command or is it trying to accessing an object in another database? If the answer is no, then the issue must be what Jeff mentioned.

Tara Kizer
Microsoft MVP for Windows Server System - SQL Server
http://weblogs.sqlteam.com/tarad/

Subscribe to my blog
Go to Top of Page

Bustaz Kool
Flowing Fount of Yak Knowledge

USA
1782 Posts

Posted - 08/19/2013 :  18:18:15  Show Profile  Reply with Quote
Is there a trigger on the table?

=================================================
The cure for anything is salt water -- sweat, tears, or the sea. -Isak Dinesen
Go to Top of Page

dolphin123
Yak Posting Veteran

USA
78 Posts

Posted - 06/25/2014 :  12:11:32  Show Profile  Reply with Quote
This is unbelievable.
Here is the summary
===================
There user belongs to 7 AD user groups that has an account on this SQL server instance.
Only one of them has access to the Database in question. (When I select Security - Logins - User Mapping).
And this group has db_owner permission on the database (If I see in Usermapping for the database; Server role is public).
On the the database, i did this:

select * from sys.database_permissions
where grantee_principal_id in (USER_ID('domainname\Group'))

it returns this:
http://screencast.com/t/alTPJbmZPXAr

So, i guess this is ok. or should it say "Delete" under "permissions" column there?

So confused with this issue.
Go to Top of Page

rajbtm05
Starting Member

India
3 Posts

Posted - 07/09/2014 :  03:51:40  Show Profile  Reply with Quote
It so happens with few database objects that user with db_owner role is not able to perform the required operations.

For a workaround, you can exclusively grant delete privileges on the objects required using GRANT DELETE.

If you want to review further on the cause, look for the login 'dbo' is mapped to and reset owner to 'sa'.
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
SQL Server Forums © 2000-2009 SQLTeam Publishing, LLC Go To Top Of Page
This page was generated in 0.08 seconds. Powered By: Snitz Forums 2000