Howdy, Stranger!
Categories
- All Categories
- 73 General
- 73 Announcements
- 66.6K Microsoft Dynamics NAV
- 18.7K NAV Three Tier
- 38.4K NAV/Navision Classic Client
- 3.6K Navision Attain
- 2.4K Navision Financials
- 115 Navision DOS
- 854 Navision e-Commerce
- 1K NAV Tips & Tricks
- 772 NAV Dutch speaking only
- 615 NAV Courses, Exams & Certification
- 2K Microsoft Dynamics-Other
- 1.5K Dynamics AX
- 305 Dynamics CRM
- 109 Dynamics GP
- 10 Dynamics SL
- 1.5K Other
- 993 SQL General
- 384 SQL Performance
- 34 SQL Tips & Tricks
- 34 Design Patterns (General & Best Practices)
- Architectural Patterns
- 10 Design Patterns
- 5 Implementation Patterns
- 53 3rd Party Products, Services & Events
- 1.7K General
- 1.1K General Chat
- 1.6K Website
- 79 Testing
- 1.2K Download section
- 23 How Tos section
- 260 Feedback
- 12 NAV TechDays 2013 Sessions
- 13 NAV TechDays 2012 Sessions
SQl Server 2008 vs NAV 2009 vs NAV5SP1 login issue
dleroux
Member Posts: 87
Here is my situation. I have a SQL Server 2008 box with both NAV 2009 and NAV 5SP1 DBs attached.
I created a SQL (not windows) login and gave it the "public" role for both NAV DBs.
I opened each NAV DB and created the DB logins for the account there and gave it the SUPER role.
In both cases, I have login problems:
On NAV 2009, I do not have permission to read the object table
On NAV 5, I can log in, but as soon as I try to do something that involves writing to the DB, I get the error message one normally sees when logging in with a bad username/password combination - complete with "please try again".
If I add the db_owner role to the NAV 2009 DB all is well with that world
But if I add the db_owner role to the NAV 5SP1 DB I can still log in, but upon trying to write to the DB (adding a new Vendor for example), I now get a "You do not have permission to read the Vendor table". I can obviously read the table, look up records, etc. But as soon as I try to run a function that involves INSERT or MODIFY, I get the "permission to read" error.
I do have Windows login accounts on both DBs and they are working fine, though I have not tried playing with permissions on them as I do not have the ability to create new network accounts.
Can anyone tell me what I am experiencing - or perhaps provide a not-so-subtle cluebat application?
Thanks
I created a SQL (not windows) login and gave it the "public" role for both NAV DBs.
I opened each NAV DB and created the DB logins for the account there and gave it the SUPER role.
In both cases, I have login problems:
On NAV 2009, I do not have permission to read the object table
On NAV 5, I can log in, but as soon as I try to do something that involves writing to the DB, I get the error message one normally sees when logging in with a bad username/password combination - complete with "please try again".
If I add the db_owner role to the NAV 2009 DB all is well with that world
But if I add the db_owner role to the NAV 5SP1 DB I can still log in, but upon trying to write to the DB (adding a new Vendor for example), I now get a "You do not have permission to read the Vendor table". I can obviously read the table, look up records, etc. But as soon as I try to run a function that involves INSERT or MODIFY, I get the "permission to read" error.
I do have Windows login accounts on both DBs and they are working fine, though I have not tried playing with permissions on them as I do not have the ability to create new network accounts.
Can anyone tell me what I am experiencing - or perhaps provide a not-so-subtle cluebat application?
Thanks
0
Comments
I've been operating under the assumption that I'm missing something fairly simple on the SQL Server side that is causing them to behave so differently, but maybe I should be looking at the NAV 5 side. I have not done anything to ehance the security of the DB.
I'll post a NAV 5 specific question in that forum
Regards
Thomas
usually i notice it because synchronising is a lot quicker then it should be. (under 3s)
Let me explain this to you, the xp_ndo.dll is used to unleash the server state to the users of the database. When you have created the user in SQL Server and trying to synchronize with just the db owner to its own login if this won't suffice, as there are specific rights that should be given to the user who is synchronizing users in the NAV db, this roles include roles in the NAV db as well as in the master db, such as assigning Security admin etc.
Hence in your case, you have to first delete the user in the NAV db, provide necessary rights of synchronization in SQL, then create the user in the NAV db and then synchronize.
Hope this helps
For any queries you can also visit my blog site: http://msnavarena.blogspot.com/