在做数据迁移时,如果需要把一个Sql Server上的用户在另外一个Sql Server上重新生成时,就可以用以下这个方法轻松解决:
首先在查询分析器中执行以下的代码:
- USE [master]
- GO
- /****** Object: StoredProcedure [dbo].[sp_help_revlogin]
- Script Date: 07/13/2011 19:07:32 ******/
- SET ANSI_NULLS ON
- GO
- SET QUOTED_IDENTIFIER ON
- GO
创建存储过程:
- CREATE PROCEDURE [dbo].[sp_help_revlogin] @login_name sysname = NULL AS
- DECLARE @name sysname
- DECLARE @type varchar (1)
- DECLARE @hasaccess int
- DECLARE @denylogin int
- DECLARE @is_disabled int
- DECLARE @PWD_varbinary varbinary (256)
- DECLARE @PWD_string varchar (514)
- DECLARE @SID_varbinary varbinary (85)
- DECLARE @SID_string varchar (514)
- DECLARE @tmpstr varchar (1024)
- DECLARE @is_policy_checked varchar (3)
- DECLARE @is_expiration_checked varchar (3)
- DECLARE @defaultdb sysname
- IF (@login_name IS NULL)
- DECLARE login_curs CURSOR FOR
- SELECT p.sid, p.name, p.type, p.is_disabled, p.default_database_name, l.hasaccess, l.denylogin FROM
- sys.server_principals p LEFT JOIN sys.syslogins l
- ON ( l.name = p.name ) WHERE p.type IN ( 'S', 'G', 'U' ) AND p.name <> 'sa'
- ELSE
- DECLARE login_curs CURSOR FOR
- SELECT p.sid, p.name, p.type, p.is_disabled, p.default_database_name, l.hasaccess, l.denylogin FROM
- sys.server_principals p LEFT JOIN sys.syslogins l
- ON ( l.name = p.name ) WHERE p.type IN ( 'S', 'G', 'U' ) AND p.name = @login_name
- OPEN login_curs
- FETCH NEXT FROM login_curs INTO @SID_varbinary, @name, @type, @is_disabled, @defaultdb, @hasaccess, @denylogin
- IF (@@fetch_status = -1)
- BEGIN
- PRINT 'No login(s) found.'
- CLOSE login_curs
- DEALLOCATE login_curs
- RETURN -1
- END
- SET @tmpstr = '/* sp_help_revlogin script '
- PRINT @tmpstr
- SET @tmpstr = '** Generated ' + CONVERT (varchar, GETDATE()) + ' on ' + @@SERVERNAME + ' */'
- PRINT @tmpstr
- PRINT ''
- WHILE (@@fetch_status <> -1)
- BEGIN
- IF (@@fetch_status <> -2)
- BEGIN
- PRINT ''
- SET @tmpstr = '-- Login: ' + @name
- PRINT @tmpstr
- IF (@type IN ( 'G', 'U'))
- BEGIN -- NT authenticated account/group
- SET @tmpstr = 'CREATE LOGIN ' + QUOTENAME( @name ) + ' FROM WINDOWS WITH DEFAULT_DATABASE = [' + @defaultdb + ']'
- END
- ELSE BEGIN -- SQL Server authentication
obtain password and sid:
- SET @PWD_varbinary = CAST( LOGINPROPERTY( @name, 'PasswordHash' ) AS varbinary (256) )
- EXEC sp_hexadecimal @PWD_varbinary, @PWD_string OUT
- EXEC sp_hexadecimal @SID_varbinary,@SID_string OUT
obtain password policy state:
- SELECT @is_policy_checked = CASE is_policy_checked WHEN 1 THEN 'ON' WHEN
- 0 THEN 'OFF' ELSE NULL END FROM sys.sql_logins WHERE name = @name
- SELECT @is_expiration_checked = CASE is_expiration_checked WHEN 1 THEN 'ON' WHEN
- 0 THEN 'OFF' ELSE NULL END FROM sys.sql_logins WHERE name = @name
- SET @tmpstr = 'CREATE LOGIN ' + QUOTENAME( @name ) + ' WITH PASSWORD = ' + @PWD_string + ' HASHED,
- SID = ' + @SID_string + ', DEFAULT_DATABASE = [' + @defaultdb + ']'
- IF ( @is_policy_checked IS NOT NULL )
- BEGIN
- SET @tmpstr = @tmpstr + ', CHECK_POLICY = ' + @is_policy_checked
- END
- IF ( @is_expiration_checked IS NOT NULL )
- BEGIN
- SET @tmpstr = @tmpstr + ', CHECK_EXPIRATION = ' + @is_expiration_checked
- END
- END
- IF (@denylogin = 1)
- BEGIN -- login is denied access
- SET @tmpstr = @tmpstr + '; DENY CONNECT SQL TO ' + QUOTENAME( @name )
- END
- ELSE IF (@hasaccess = 0)
- BEGIN -- login exists but does not have access
- SET @tmpstr = @tmpstr + '; REVOKE CONNECT SQL TO ' + QUOTENAME( @name )
- END
- IF (@is_disabled = 1)
- BEGIN -- login is disabled
- SET @tmpstr = @tmpstr + '; ALTER LOGIN ' + QUOTENAME( @name ) + ' DISABLE'
- END
- PRINT @tmpstr
- END
- FETCH NEXT FROM login_curs INTO @SID_varbinary, @name, @type, @is_disabled, @defaultdb, @hasaccess, @denylogin
- END
- CLOSE login_curs
- DEALLOCATE login_curs
- RETURN 0
执行完以上的代码,登录用户信息的脚本就导出成功了。本篇就介绍到这里,文中若有不妥之处,欢迎大家批评指正。
【编辑推荐】
- 巧用DAC解决SQL Server登录失败的问题
- 如何将系统监视器数据记录到SQL Server
- 用FOR XML PATH将查询结果以XML输出
- 使用SQL Trace来实现SQL Server的跟踪操作
- CTE和WITH AS短语结合使用提高SQL查询性能
