To display the current permissions and mapped user names for both NT users and groups, use sp_logininfo. The following list describes this sample display:
account name mapped login name
type privilege
-------------- ---------------------------------------------
BUILTIN\Administrators BUILTIN\Administrators
group ‘sa_role sso_role oper_role’
WEST\chantal WEST_chantal
user ‘default’
EAST\chantal chantal
user ‘sa_role’
Three roles were assigned to the NT administrators group: sa_role, sso_role, and oper_role.
The group names are prefaced by “BUILTIN\” to indicate that the entry refers to a built-in NT group (a default group on all servers), rather than a group that is created by the user.
The domain separator in a group name is not mapped to a valid Adaptive Server character.
You do not need to add a login or grant further permissions to an NT group, but you do need to add a login for each user in that group.
The first NT user, named “chantal”, has the default parameter assigned as a permission. “chantal” is a member of the WEST domain, and her mapped Adaptive Server login name is “WEST_chantal”.
“WEST_chantal” is the name the System Administrator should use when assigning an Adaptive Server login name and permissions to this user.
The second NT user, also named “chantal”, logs in from the EAST domain. Her mapped user name is simply “chantal”, since EAST has been set as Adaptive Server’s default domain (see the second item in this list).
To change or revoke the displayed users, groups, and permissions use the sp_grantlogin and sp_revokelogin procedures.
