When operating under Integrated or Mixed Login Mode, Adaptive Server assigns permissions to trusted user connections by checking the user’s network or Windows group name. This check determines whether the Security Administrator, using sp_grantlogin, has assigned an Adaptive Server role, or the default value, to that name, and Adaptive Server acts accordingly.
When no permissions were assigned to the name, and Adaptive Server is operating in:
Integrated mode, Adaptive Server refuses the connection.
Mixed mode, Adaptive Server treats the connection as an untrusted connection. Then, the login process continues under the Standard mode rules.
When one or more Adaptive Server roles have been assigned to the user’s network name or to the user’s Windows group, the user receives those roles and permissions that were assigned by the Security Administrator through the grant statement.
When only the default value has been assigned to the user’s network name or Windows group, the user receives only the permissions and roles that were assigned by the Security Administrator through the grant statement.
The most important point to remember is that Windows users or their associated Windows groups must have permissions that were assigned with sp_grantlogin.
For examples of this system procedure, see “Assigning trusted connection permissions”.
For more information about sp_grantlogin, see the System Administration Guide.