How to allow domain groups access to SQL server?

sql sql-server domain

I'm sure this is a simple problem, bu I've looked for days...

I have a SQL server that is part of a domain. The domain has many many users.

I want to allow select permissions to anyone within a particular group on the domain.

Right now I have to add a SQL user for every domain user, I'm sure there is a better way?

CREATE USER [Bob] FOR LOGIN [Domain\Bob]
GRANT SELECT ON TABLE TO "Domain\Group"

bob is a member of group


Transact-SQL:

use master ;
create login [DOMAIN\Group] from windows ;
use <database> ;
create user [DOMAIN\Group] from login [DOMAIN\Group] ;
grant select on object:: <schema>.<object> to [DOMAIN\Group] ;

You can create a SQL Login and a Database User from a Windows group. Note that Domain Users still connect as their user account - the SUSER_SNAME() function will return DOMAIN\user (not DOMAIN\Group).


Create a security group in ADUC.

Add the users to the group.

Create a SQL login for the group.

Map the SQL login to the appropriate SQL roles, databases, permissions, etc.

Related

Copy ferret index to other servers?
No sound in Cave Story+
VMware ESXi 5 on HP ProLiant DL320 G5
How do I get two Miis to be friends instantly?
How do I make an exception for Cscript.exe in Windows Server 2008 R2?
Amulet near Vulgrim
How to secure an open port for SSH
How to use Node packages without internet connection?
How does Windows News & Interests still work if Location services are turned off?
'ls' output doesn't show color anymore in macOS High Sierra
I'm on Linux and [application] isn't outputting any sound!!! I have my speakers connected, [other application] works fine, but not this one
Permission Denied on my raspberry pi transmission