SQL Server µÄÄ£Äâ

SQL Server µÄÄ£Äâ
רÀ¸×÷¼Ò£ºDeanna Dicken 2010Äê2ÔÂ12ÈÕ
·­Ò룺    UltraDBA      2010Äê5ÔÂ25ÈÕ
Ô­ÌûµØÖ·£ºhttp://www.databasejournal.com/features/mssql/article.php/3863516/SQL-Server-Impersonation.htm
½éÉÜ
SQL Server µÄÄ£Ä⣬»òÉÏÏÂÎÄÇл»£¬ÊÇÒ»ÖÖ·½Ê½£¬ÔÊÐíµ±Ç°Óû§Ä£Äâ¸ø¶¨Óû§»òµÇ¼µÄȨÏÞ£¬Ö±µ½ÉÏ
ÏÂÎÄÖØÖã¬ÉèÖûØÁíÒ»¸öÓû§£¬»ò»á»°½áÊø¡£½ÓÏÂÀ´£¬ÎÒÃǽ«ÌÖÂÛÁ½ÖÖʵÏÖÕâÏîÈÎÎñµÄ»úÖƲ¢Íê³ÉһЩ
ʵÀý¡£
SETUSER
ÔÚ SQL Server 2000 ÖУ¬Èç¹ûÄãÓÐÐèÒªÓõ½°²È«ÉÏÏÂÎÄÇл»£¬ÄãÖ»ÓÐÒ»¸öÑ¡Ôñ£ºSETUSER¡£Óøø¶¨µÄÓÃ
»§ÃûÖ´ÐÐÓï¾ä£¬ÁÙʱÉèÖÃÔÊÐíÌṩÕË»§Ö´ÐеÄȨÏÞ¡£¶à¸öµ÷ÓÃÄܹ»±»Ê¹Ó㬰²È«ÉÏÏÂÎÄÇл»Í¨¹ýµ÷Óò»
´øÓû§ÃûµÄ SETUSER Óï¾äÖØÖûØÔ­À´µÄÉÏÏÂÎÄ»·¾³¡£
Ðí¿É
ÓëÁª»ú°ïÖúÏà·´µÄÊÇ£¬Ò»¸öÕ˺ÅÏëµ÷Óà SETUSER ±ØÐëÓµÓÐ sysadmin ·þÎñÆ÷½ÇÉ«¡£Áª»ú°ïÖú´íÎóµÄÃè
ÊöÓû§ÓµÓÐ dbo ȨÏÞÒ²ÄÜÀûÓÃÕâ¸öÓï¾ä£¬È»ºóÕâÊDz»Ðеġ£
ʾÀý
ÏÂÃæµÄÀý×ÓչʾÁË°²È«ÉÏÏÂÎÄÇл»´Óµ±Ç°µÇ¼Õ˺Šadminacct£¬Çл»µ½Ò»¸ö SQL µÇ¼£¬ÔÙµ½ÁíÒ»¸ö
SQL µÇ¼£¬È»ºóÇл»»ØÀ´¡£×¢Ò⣬°²È«ÉÏÏÂÎÄÊÇͨ¹ýÖ´Ðв»´øÓû§ÃûµÄ SETUSER Óï¾äÇл»»Ø°²È«ÉÏÏÂ
Îĵ½µ±Ç°µÇ¼Õ˺š£
SERTUSER 'jdoe'
SELECT SUSER_SNAME()
SERUSER 'jschmoe'
SELECT SUSER_SNAME()
SETUSER
SELECT SUSER_SNAME()
½á¹û£º
-----------------------------------
jdoe
(ËùÓ°ÏìÐÐÊýΪ 1 ÐÐ)
-----------------------------------
jschmoe
(ËùÓ°ÏìÐÐÊýΪ 1 ÐÐ)
-----------------------------------
adminacct
(ËùÓ°ÏìÐÐÊýΪ 1 ÐÐ)
ÔÚÉÏÃæµÄʾÀýÖУ¬Òª×¢ÒâµÄÊÇ jdoe ±ØÐë¾ßÓÐ sysamdin ½ÇÉ«µÄȨÏÞ²ÅÄÜÖ´Ðгɹ¦ SETUSER 'jschmoe'
ÃüÁî¡£Èç¹û jdoe ûÓÐ sysadmin ȨÏÞ£¬½«Å׳öÈçÏ´íÎó¡£
Msg 15157,Level 16,State 1,Line 3
SetuserÒòΪÈçÏÂÔ­Òòʧ°Ü£º
Êý¾Ý¿âÖ÷Ìå 'jschmoe' ²»´æÔÚ£¬
¶ÔÓ¦µÄ·þÎñÆ÷Ö÷Ìå²»´æÔÚ·þÎñÆ÷µÄ·ÃÎÊ£¬
´ËÀàÐÍÊý¾Ý¿âÖ÷Ìå²»Äܱ»Ä£Ä⣬
»òÕßÄãûÓÐȨÏÞ¡£
SETUSER ÓÐÒ»¸ö¿ÉÑ¡²ÎÊý WITH NORESET£¬ÓÃÔÚÉÏÃæµÄʾÀýÖпÉÒÔÄ£ÄâÉÏÏÂÎIJ»±»ÖØÖõ½¿ªÊ¼µÄ
sysadmin¡£ÔÙÒ»´ÎÒÔ adminacct µÇ¼£¬Ö´ÐÐÈçϽű¾¡£
SETUSER 'jdoe' WITH NORESET
SELECT SUSER_SNAME()
SETUSER 'jschmoe'
SELECT SUSER_SNAME()
SETUSER
SELECT SUSER_SNAME()
½á¹û£º
-----------------------------------
jdoe
(Ëù