Automatically add new windows user to sql server?

Question

Hi all,

Is it possible to automatically add a new windows user to sql server as a login and assign them to a role?...if so...how? So when the Admin is creating the new Windows account they are automatically added to Sql Server.

Thanks

Answer 1

Hello,

I assume you have small environment and minimal auditing with all users in the environment "MUST HAVE" access to SQL Server.
You can create SQL_Server_Access Active Directory group and grant that group access to your SQL Server. Your Windows Admin would create a script or policy which would add every new user to that SQL_Server_Access AD group. It is done on AD side, not on SQL Server side.
On SQL Server side you can add "Authenticated Users" or "Everyone", but that would be OPEN GATE to your SQL Server for the whole world, so I DON'T recommend doing that.

Regards,

Answer 2

Absolutely- use Windows groups (these can be local groups or active directory groups).

Read the following article:

http://www.mssqltips.com/tip.asp?tip=1831

---

every day is a school day

Answer 3

Thanks very much guys, I'll look  into those options.

Regards
Melt

Answer 4

To add to AkimZ answer; in a domain you could grant login access to DOMAIN\Domain Users and then map that login to various DB roles, but it's really wide open and I don't think anyone would recommend that unless you've designed the server, database, and roles in a such a way as to mitigate all the associated risks.
It would however be the absolute easiest way to ensure that every single account has access to SQL at creation time while still ensuring the account is properly authenticated.

-Andrew