I accidentally removed SELECT permission from my user on SQL Server












0















I accidentally removed SELECT and other permissions from my user on SQL Server 2014 via Properties.



I checked all the permissions except the Guest in the Owned Schemas list and also in Membership - including db_denydatareader and db_denydatawriter. That's what made me this mistake. There are some permissions (db_denydatareader and db_denydatawriter) that if you check them, you would remove your own permission without being able to regrant them. I checked all of them.




Cannot alter the role 'sp_denydatareader', because it does not exist or you do not have permission.




Unfortunately I can't use SELECT and other function on my queries or selecting the Properties again in order to uncheck the permissions.



What should I do? I'm not the admin on the box. Is there any way to restore it without asking the sysadmin?






sql-server permissions







share|improve this question




















  • 2





    I don't think so. Ask your sysadmin: if your permission is legit, you will have it back

    – spaghettidba
    Sep 21 '16 at 7:46
















0















I accidentally removed SELECT and other permissions from my user on SQL Server 2014 via Properties.



I checked all the permissions except the Guest in the Owned Schemas list and also in Membership - including db_denydatareader and db_denydatawriter. That's what made me this mistake. There are some permissions (db_denydatareader and db_denydatawriter) that if you check them, you would remove your own permission without being able to regrant them. I checked all of them.




Cannot alter the role 'sp_denydatareader', because it does not exist or you do not have permission.




Unfortunately I can't use SELECT and other function on my queries or selecting the Properties again in order to uncheck the permissions.



What should I do? I'm not the admin on the box. Is there any way to restore it without asking the sysadmin?






sql-server permissions







share|improve this question




















  • 2





    I don't think so. Ask your sysadmin: if your permission is legit, you will have it back

    – spaghettidba
    Sep 21 '16 at 7:46














0












0








0








I accidentally removed SELECT and other permissions from my user on SQL Server 2014 via Properties.



I checked all the permissions except the Guest in the Owned Schemas list and also in Membership - including db_denydatareader and db_denydatawriter. That's what made me this mistake. There are some permissions (db_denydatareader and db_denydatawriter) that if you check them, you would remove your own permission without being able to regrant them. I checked all of them.




Cannot alter the role 'sp_denydatareader', because it does not exist or you do not have permission.




Unfortunately I can't use SELECT and other function on my queries or selecting the Properties again in order to uncheck the permissions.



What should I do? I'm not the admin on the box. Is there any way to restore it without asking the sysadmin?






sql-server permissions







share|improve this question
















I accidentally removed SELECT and other permissions from my user on SQL Server 2014 via Properties.



I checked all the permissions except the Guest in the Owned Schemas list and also in Membership - including db_denydatareader and db_denydatawriter. That's what made me this mistake. There are some permissions (db_denydatareader and db_denydatawriter) that if you check them, you would remove your own permission without being able to regrant them. I checked all of them.




Cannot alter the role 'sp_denydatareader', because it does not exist or you do not have permission.




Unfortunately I can't use SELECT and other function on my queries or selecting the Properties again in order to uncheck the permissions.



What should I do? I'm not the admin on the box. Is there any way to restore it without asking the sysadmin?






sql-server permissions




sql-server permissions






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited 16 mins ago









Paul White

50.9k14278448




50.9k14278448










asked Sep 21 '16 at 7:28









iminikiiminiki

1042




1042








  • 2





    I don't think so. Ask your sysadmin: if your permission is legit, you will have it back

    – spaghettidba
    Sep 21 '16 at 7:46














  • 2





    I don't think so. Ask your sysadmin: if your permission is legit, you will have it back

    – spaghettidba
    Sep 21 '16 at 7:46








2




2





I don't think so. Ask your sysadmin: if your permission is legit, you will have it back

– spaghettidba
Sep 21 '16 at 7:46





I don't think so. Ask your sysadmin: if your permission is legit, you will have it back

– spaghettidba
Sep 21 '16 at 7:46










1 Answer
1






active

oldest

votes


















4














Checking all the items in Membership means you are adding yourself to all the roles defined in the database. That includes the sp_denydatareader role, which is probably the main reason you cannot open the Properties box any more.



If you have been given the permission to alter roles previously, it is likely that you have not removed it by your erroneous actions. So, you could just try to remove yourself from the sp_denydatareader role by executing this command in a query window:



ALTER ROLE sp_denydatareader DROP MEMBER your_user_name;


If that succeeds, you can then try opening the Properties box again and undoing your mistakes.






share|improve this answer
























  • Alas... Cannot alter the role 'sp_denydatareader', because it does not exist or you do not have permission.

    – iminiki
    Sep 21 '16 at 8:31











  • It doesn't look like you can do without the sysadmin then. Sorry. Or maybe there's another way I'm not aware of.

    – Andriy M
    Sep 21 '16 at 8:33













Your Answer








StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "182"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});














draft saved

draft discarded


















StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fdba.stackexchange.com%2fquestions%2f150243%2fi-accidentally-removed-select-permission-from-my-user-on-sql-server%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown

























1 Answer
1






active

oldest

votes








1 Answer
1






active

oldest

votes









active

oldest

votes






active

oldest

votes









4














Checking all the items in Membership means you are adding yourself to all the roles defined in the database. That includes the sp_denydatareader role, which is probably the main reason you cannot open the Properties box any more.



If you have been given the permission to alter roles previously, it is likely that you have not removed it by your erroneous actions. So, you could just try to remove yourself from the sp_denydatareader role by executing this command in a query window:



ALTER ROLE sp_denydatareader DROP MEMBER your_user_name;


If that succeeds, you can then try opening the Properties box again and undoing your mistakes.






share|improve this answer
























  • Alas... Cannot alter the role 'sp_denydatareader', because it does not exist or you do not have permission.

    – iminiki
    Sep 21 '16 at 8:31











  • It doesn't look like you can do without the sysadmin then. Sorry. Or maybe there's another way I'm not aware of.

    – Andriy M
    Sep 21 '16 at 8:33


















4














Checking all the items in Membership means you are adding yourself to all the roles defined in the database. That includes the sp_denydatareader role, which is probably the main reason you cannot open the Properties box any more.



If you have been given the permission to alter roles previously, it is likely that you have not removed it by your erroneous actions. So, you could just try to remove yourself from the sp_denydatareader role by executing this command in a query window:



ALTER ROLE sp_denydatareader DROP MEMBER your_user_name;


If that succeeds, you can then try opening the Properties box again and undoing your mistakes.






share|improve this answer
























  • Alas... Cannot alter the role 'sp_denydatareader', because it does not exist or you do not have permission.

    – iminiki
    Sep 21 '16 at 8:31











  • It doesn't look like you can do without the sysadmin then. Sorry. Or maybe there's another way I'm not aware of.

    – Andriy M
    Sep 21 '16 at 8:33
















4












4








4







Checking all the items in Membership means you are adding yourself to all the roles defined in the database. That includes the sp_denydatareader role, which is probably the main reason you cannot open the Properties box any more.



If you have been given the permission to alter roles previously, it is likely that you have not removed it by your erroneous actions. So, you could just try to remove yourself from the sp_denydatareader role by executing this command in a query window:



ALTER ROLE sp_denydatareader DROP MEMBER your_user_name;


If that succeeds, you can then try opening the Properties box again and undoing your mistakes.






share|improve this answer













Checking all the items in Membership means you are adding yourself to all the roles defined in the database. That includes the sp_denydatareader role, which is probably the main reason you cannot open the Properties box any more.



If you have been given the permission to alter roles previously, it is likely that you have not removed it by your erroneous actions. So, you could just try to remove yourself from the sp_denydatareader role by executing this command in a query window:



ALTER ROLE sp_denydatareader DROP MEMBER your_user_name;


If that succeeds, you can then try opening the Properties box again and undoing your mistakes.







share|improve this answer












share|improve this answer



share|improve this answer










answered Sep 21 '16 at 8:17









Andriy MAndriy M

16k63372




16k63372













  • Alas... Cannot alter the role 'sp_denydatareader', because it does not exist or you do not have permission.

    – iminiki
    Sep 21 '16 at 8:31











  • It doesn't look like you can do without the sysadmin then. Sorry. Or maybe there's another way I'm not aware of.

    – Andriy M
    Sep 21 '16 at 8:33





















  • Alas... Cannot alter the role 'sp_denydatareader', because it does not exist or you do not have permission.

    – iminiki
    Sep 21 '16 at 8:31











  • It doesn't look like you can do without the sysadmin then. Sorry. Or maybe there's another way I'm not aware of.

    – Andriy M
    Sep 21 '16 at 8:33



















Alas... Cannot alter the role 'sp_denydatareader', because it does not exist or you do not have permission.

– iminiki
Sep 21 '16 at 8:31





Alas... Cannot alter the role 'sp_denydatareader', because it does not exist or you do not have permission.

– iminiki
Sep 21 '16 at 8:31













It doesn't look like you can do without the sysadmin then. Sorry. Or maybe there's another way I'm not aware of.

– Andriy M
Sep 21 '16 at 8:33







It doesn't look like you can do without the sysadmin then. Sorry. Or maybe there's another way I'm not aware of.

– Andriy M
Sep 21 '16 at 8:33




















draft saved

draft discarded




















































Thanks for contributing an answer to Database Administrators Stack Exchange!


  • Please be sure to answer the question. Provide details and share your research!

But avoid



  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.


To learn more, see our tips on writing great answers.




draft saved


draft discarded














StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fdba.stackexchange.com%2fquestions%2f150243%2fi-accidentally-removed-select-permission-from-my-user-on-sql-server%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







-

Popular posts from this blog

Liste der Baudenkmale in Friedland (Mecklenburg)

Image
In der Liste der Baudenkmale in Friedland sind alle denkmalgeschützten Bauten der Stadt Friedland (Mecklenburg-Vorpommern) und ihrer Ortsteile aufgelistet. Grundlage ist die Veröffentlichung der Denkmalliste des Landkreises Mecklenburgische Seenplatte (Auszug) vom 28. September 2016. Inhaltsverzeichnis 1 Baudenkmale nach Ortsteilen 1.1 Friedland 1.2 Bresewitz 1.3 Brohm 1.4 Cosa 1.5 Dishley 1.6 Dishley-Ausbau 1.7 Eichhorst 1.8 Glienke 1.9 Heinrichshöh 1.10 Heinrichswalde 1.11 Jatzke 1.12 Jatzke-Meierei 1.13 Liepen 1.14 Ramelow 1.15 Schwanbeck 2 Vorgesehener Denkmalbereich 3 Quelle 4 Weblinks Baudenkmale nach Ortsteilen | Friedland | ID Lage Bezeichnung Beschreibung Bild 281 An der Kleinbahn 2 Windmühle mit Umgang 282 Anklamer Straße alter Friedhof mit Portalwand 282 Anklamer Straße drei Erbbegräbnissen und Gräbern u. a. H.A. Riemann 284
Read more

Single-Malt-Whisky

Image
Fünf verschiedene schottische Single-Malt-Whiskys Als Single-Malt-Whisky oder kürzer Single Malt werden Whiskys bezeichnet, die zwei besondere Bedingungen erfüllen: Sie stammen zum ersten aus einer einzigen Brennerei, sind also kein Verschnitt aus mehreren Whiskysorten (daher Single , deutsch: einzeln). Zum zweiten wird als Getreide ausschließlich gemälzte Gerste verwendet (deswegen Malt , deutsch: Malz). Der Zusatz Single Malt wird als Prädikat verstanden, die so ausgezeichneten Whiskys sind in aller Regel besonders hochwertig. Hinzu kommt ihre besonders lange Lagerung, die Reifungszeit währt oft ein Jahrzehnt und länger. Inhaltsverzeichnis 1 Allgemeines 2 Herkunftsländer 2.1 Schottland 2.2 Irland 2.3 Japan 2.4 Kontinentaleuropa 3 Produktionsschritte 3.1 Mälzen 3.2 Brauen 3.3 Brennen 3.4 Reifung und Finish 3.5 Abfüllung 4 Altersangaben 5 Lagerung von Whiskyflaschen 6 Geschmacksklassifikation 7 Sonstig
Read more

Czorneboh

Image
Dieser Artikel erläutert den Berg Czorneboh, für die Gottheit siehe Czorneboh (Gottheit). Czorneboh Čornobóh Berggasthof mit Turm Höhe 555,7  m ü. NHN [1] Lage Freistaat Sachsen, Deutschland Gebirge Lausitzer Bergland Dominanz 15,4 km →  Kottmar Koordinaten 51° 7′ 11″  N , 14° 31′ 31″  O 51.119722222222 14.525194444444 555.7 Koordinaten: 51° 7′ 11″  N , 14° 31′ 31″  O Gestein Granodiorit Besonderheiten Aussichtsturm Czorneboh Der Czorneboh , obersorbisch Čornobóh , ist ein Berg zwischen Hochkirch und Cunewalde in der Oberlausitz. Er gehört zu der südöstlich von Bautzen gelegenen Czorneboh-Bergkette und ist mit einer Höhe von 555,7  m ü. NHN [1] der höchste Punkt dieses Ausläufers des Lausitzer Berglandes. Er leitet als Landschaftselement die wellige Granitlandschaft der Lausitzer Vorbergzone ein. Der Gipfel des Czorneboh liegt in der Gemarkung Meschwitz (Gemeinde Hochkirch), die Czornebohbaude jedoch
Read more