Home Library Learn Samples Downloads Support Community Forums
MSDN Library
Servers and Enterprise Development
SQL Server
SQL Server 2012
Product Documentation
Books Online for SQL Server 2012
Database Engine
Transact-SQL Reference (Database Engine)
System Stored Procedures (Transact-SQL)
Security Stored Procedures (Transact-SQL)
sp_addapprole (Transact-SQL)
sp_addlogin (Transact-SQL)
sp_addremotelogin (Transact-SQL)
sp_addrole (Transact-SQL)
sp_addrolemember (Transact-SQL)
sp_addserver (Transact-SQL)
sp_addsrvrolemember (Transact-SQL)
sp_adduser (Transact-SQL)
sp_approlepassword (Transact-SQL)
sp_audit_write (Transact-SQL)
sp_change_users_login (Transact-SQL)
sp_changedbowner (Transact-SQL)
sp_changeobjectowner (Transact-SQL)
sp_control_dbmasterkey_password (Transact-SQL)
sp_dbfixedrolepermission (Transact-SQL)
sp_defaultdb (Transact-SQL)
sp_defaultlanguage (Transact-SQL)
sp_denylogin (Transact-SQL)
sp_dropalias (Transact-SQL)
sp_dropapprole (Transact-SQL)
sp_droplogin (Transact-SQL)
sp_dropremotelogin (Transact-SQL)
sp_droprole (Transact-SQL)
sp_droprolemember (Transact-SQL)
sp_dropserver (Transact-SQL)
sp_dropsrvrolemember (Transact-SQL)
sp_dropuser (Transact-SQL)
sp_grantdbaccess (Transact-SQL)
sp_grantlogin (Transact-SQL)
sp_helpdbfixedrole (Transact-SQL)
sp_helplinkedsrvlogin (Transact-SQL)
sp_helplogins (Transact-SQL)
sp_helpntgroup (Transact-SQL)
sp_helpremotelogin (Transact-SQL)
sp_helprole (Transact-SQL)
sp_helprolemember (Transact-SQL)
sp_helprotect (Transact-SQL)
sp_helpsrvrole (Transact-SQL)
sp_helpsrvrolemember (Transact-SQL)
sp_helpuser (Transact-SQL)
sp_migrate_user_to_contained (Transact-SQL)
sp_MShasdbaccess (Transact-SQL)
sp_password (Transact-SQL)
sp_remoteoption (Transact-SQL)
sp_revokelogin (Transact-SQL)
sp_revokedbaccess (Transact-SQL)
sp_setapprole (Transact-SQL)
sp_srvrolepermission (Transact-SQL)
sp_unsetapprole (Transact-SQL)
sp_validatelogins (Transact-SQL)
sp_xp_cmdshell_proxy_account (Transact-SQL)
Expand Minimize
1 out of 1 rated this helpful - Rate this topic

sp_addrolemember (Transact-SQL)

SQL Server 2012

Adds a database user, database role, Windows login, or Windows group to a database role in the current database.

Important note Important

This feature will be removed in a future version of Microsoft SQL Server. Avoid using this feature in new development work, and plan to modify applications that currently use this feature. Use ALTER ROLE instead.

Topic link icon Transact-SQL Syntax Conventions

Copy 

          

sp_addrolemember [ @rolename = ] 'role',
    [ @membername = ] 'security_account'
[ @rolename= ] 'role'

Is the name of the database role in the current database. role is a sysname, with no default.

[ @membername= ] 'security_account'

Is the security account being added to the role. security_account is a sysname, with no default. security_account can be a database user, database role, Windows login, or Windows group.

0 (success) or 1 (failure)

A member added to a role by using sp_addrolemember inherits the permissions of the role. If the new member is a Windows-level principal without a corresponding database user, a database user will be created but may not be fully mapped to the login. Always check that the login exists and has access to the database.

A role cannot include itself as a member. Such "circular" definitions are not valid, even when membership is only indirectly implied by one or more intermediate memberships.

sp_addrolemember cannot add a fixed database role, fixed server role, or dbo to a role. sp_addrolemember cannot be executed within a user-defined transaction.

Only use sp_addrolemember to add a member to a database role. To add a member to a server role, use sp_addsrvrolemember (Transact-SQL).

Adding members to flexible database roles requires one of the following:

  • Membership in the db_securityadmin or db_owner fixed database role.

  • Membership in the role that owns the role.

  • ALTER ANY ROLE permission or ALTER permission on the role.

Adding members to fixed database roles requires membership in the db_owner fixed database role.

A. Adding a Windows login

The following example adds the Windows login Contoso\Mary5 to the AdventureWorks2012 database as user Mary5. The user Mary5 is then added to the Production role.

Note Note

Because Contoso\Mary5 is known as the database user Mary5 in the AdventureWorks2012 database, the user name Mary5 must be specified. The statement will fail unless a Contoso\Mary5 login exists. Test by using a login from your domain.
Copy 
USE AdventureWorks2012;
GO
CREATE USER Mary5 FOR LOGIN [Contoso\Mary5] ;
GO
EXEC sp_addrolemember 'Production', 'Mary5'

B. Adding a database user

The following example adds the database user Mary5 to the Production database role in the current database.

Copy 
EXEC sp_addrolemember 'Production', 'Mary5'
Did you find this helpful?
(1500 characters remaining)

Community Additions

ADD
© 2013 Microsoft. All rights reserved.
|
Site Feedback
© 2013 Microsoft. All rights reserved.