查找孤立用户
Find Orphaned Users
发布-日期: 2018年3月30日 (评论)
Contents
中文
使用此逻辑(logic),你将能够找到孤立用户,并且还可以重新同步登录,删除登录,删除架构以及在必要时删除角色。首先在resynch列中运行所有代码,然后再运行该程序通常是个不错的做法。 因为它将为你提供简化列表。
English
With this logic you’ll be able to find orphaned users, and also be provided with the logic to resynch the logins, drop the logins, drop the schema, and drop the roles if necessary. It’s generally a good idea to run everything in the resynch column first; then run the process again. This will provide you with a reduced list.
Logic
use master;
set nocount on
if object_id('tempdb..#orphaned_users') is not null
drop table #orphaned_users
create table #orphaned_users
(
[database_name] varchar(255)
, [user_name] varchar(255)
, [resynch_login] varchar(3000)
, [drop_login] varchar(3000)
, [drop_role] varchar(3000)
, [drop_schema] varchar(3000)
);
declare @find_orphaned_users varchar(max);
if (select right(substring(@@version, 0, charindex('(', @@version, 0)), 5) as int) < 2012
begin
set @find_orphaned_users =
'select
''?'' [databasename]
, sdp.[name]
, ''use [?]; exec sp_change_users_login ''''update_one'''', '''''' + sdp.name + '''''', '''''' + sdp.name + ''''''; ''
, ''use [?]; drop login ['' + sdp.name + ''];''
, ''use [?]; alter authorization on schema::['' + sdp.name + ''] to [dbo];''
, ''use [?]; alter authorization on role::['' + sdp.name + ''] to [dbo];''
from
?.sys.database_principals sdp left outer join sys.server_principals ssp on sdp.sid=ssp.sid
where
sdp.type = ''s''
and sdp.name not in (''dbo'',''sys'',''information_schema'',''guest'')
and sdp.name not like ''%##%''
and db_id(''?'') > 4
and ssp.sid is null';
end;
else
begin
set @find_orphaned_users =
'select
''?'' [databasename]
, sdp.[name]
, ''use [?]; exec sp_change_users_login ''''update_one'''', '''''' + sdp.name + '''''', '''''' + sdp.name + ''''''; ''
, ''use [?]; drop login ['' + sdp.name + ''];''
, ''use [?]; alter authorization on schema::['' + sdp.name + ''] to [dbo];''
, ''use [?]; alter authorization on role::['' + sdp.name + ''] to [dbo];''
from
?.sys.database_principals sdp left outer join sys.server_principals ssp on sdp.sid=ssp.sid
where
sdp.type = ''s''
and sdp.name not in (''dbo'',''sys'',''information_schema'',''guest'')
and sdp.name not like ''%##%''
and db_id(''?'') > 4
and ssp.sid is null
and sdp.authentication_type=1';
end;
insert into #orphaned_users exec sp_msforeachdb @find_orphaned_users;
select * from #orphaned_users order by [database_name] asc;
Build-Info
Build Quality | Build History | ||||
---|---|---|---|---|---|
Author
- 李聪明的数据库 Lee's Clever Data
- Mike的数据库宝典 Mikes Database Collection
- 李聪明的数据库 "Lee Songming"