Although the terms login and user are often used interchangeably, they are very different. A login is used for user authentication and a database user account is used for database access and permissions validation. Logins are associated to users by the security identifier (SID). A login is required for access to the SQL Server server. The process of verifying that a particular login is valid is called "authentication". This login must be associated to a SQL Server database user. You use the user account to control activities performed in the database. If no user account exists in a database for a specific login, the user that is using that login cannot access the database even though the user may be able to connect to the SQL Server server. The single exception to this situation is when the database contains the "guest" user account. A login that does not have an associated user account is mapped to the guest user. Conversely, if a database user exists but there is no login associated, the user is not able to log into SQL Server server.
When a database is restored to a different server it contains a set of users and permissions but there may not be any corresponding logins or the logins may not be associated with the same users. This condition is known as having "orphaned users."
When you restore a database backup to another server, you may experience a problem with orphaned users. The following scenario illustrates the problem and shows how to resolve it.
- Add a login to the master database, and specify the default database as Northwind:
Use master go sp_addlogin 'test', 'password', 'Northwind'
- Grant access to the user you just created:
Use Northwind go sp_grantdbaccess 'test'
- Backup the database.
BACKUP DATABASE Northwind TO DISK = 'C:\MSSQL\BACKUP\Northwind.bak'
- Restore the database to a different SQL Server server:
RESTORE DATABASE Northwind FROM DISK = 'C:\MSSQL\BACKUP\Northwind.bak'
- Now, to detect orphaned users, run this code:
Use Northwind go sp_change_users_login 'report'
Steps To Resolve Orphaned Users
- Run the following command for the orphaned user from the preceding step:
Use Northwind go sp_change_users_login 'update_one', 'test', 'test'
- After you run the code in the preceding step, the user can access the database. The user may then alter the password with the sp_password stored procedure:
Use master go sp_password NULL, 'ok', 'test'
Only members of the sysadmin role can change the password for another user's login.
To find Orphan user in dbs..
- Click on db from folder view and then create a new query window
- Type Exec sp_change_users_login 'report', this will tell you which users are considerd as a orphan users.
- Once you have list of users, type Exec sp_change_users_login 'Auto_Fix', 'Username' when you dont have password, which is common.
- Execute query and Most of the time this will solve my orphan user issue.
Microsoft Reference Site: http://support.microsoft.com/kb/274188