Allows a member of the sysadmin fixed server role or db_owner fixed database role to impersonate another user.
SETUSER is included for backward compatibility only. SETUSER may not be supported in a future release of SQL Server. We recommend that you use EXECUTE AS instead.
Applies to: SQL Server (SQL Server 2008 through current version), Azure SQL Database.
SETUSER can be used by a member of the sysadmin fixed server role or the db_owner fixed database role to adopt the identity of another user to test the permissions of the other user.
Only use SETUSER with SQL Server users. SETUSER is not supported with Windows users. When SETUSER has been used to assume the identity of another user, any objects that the impersonating user creates are owned by the user being impersonated. For example, if the database owner assumes the identity of user Margaret and creates a table called orders, the orders table is owned by Margaret, not the system administrator.
SETUSER remains in effect until another SETUSER statement is issued or until the current database is changed with the USE statement.
If SETUSER WITH NORESET is used, the database owner or system administrator must log off and then log on again to reestablish his or her own rights.
The following example shows how the database owner can adopt the identity of another user. User mary has created a table called computer_types. By using SETUSER, the database owner impersonates mary to grant user joe access to the computer_types table, and then resets his or her own identity.
SETUSER 'mary'; GO GRANT SELECT ON computer_types TO joe; GO SETUSER;