<div>
Create an AD group and give that group permissions on SQL Server instead of a single user. Then, new users will be added directly to the AD group and will have automatically access to SQL Server.
</div>


Create an AD group and give that group permissions on SQL Server instead of a single user. Then, new users will be added directly to the AD group and will have automatically access to SQL Server.

<div>
<div class="content wysiwyg-content">
I guess this is a two part issue but would like to know how to do this in one step. When I create a user on the windows server it creates the user and mailbox on the exchange server but would like for it to also create a user on the SQL server that has trusted rights to run crystal reports we have created. Currently I have to create a new user on the SQL server which has public role assigned to the user but want them to also be trusted so they can run the reports. Right now they have to use the SA login to run the reports and I don't like that. I have read I need to give the sysadmin role to that user but that is like letting them use the SA login. How can I do this in one step and what role on the sql server can I give them that allows them to be trusted but not make modifications on the database?
</div>
</div>


I guess this is a two part issue but would like to know how to do this in one step. When I create a user on the windows server it creates the user and mailbox on the exchange server but would like for it to also create a user on the SQL server that has trusted rights to run crystal reports we have created. Currently I have to create a new user on the SQL server which has public role assigned to the user but want them to also be trusted so they can run the reports. Right now they have to use the SA login to run the reports and I don't like that. I have read I need to give the sysadmin role to that user but that is like letting them use the SA login. How can I do this in one step and what role on the sql server can I give them that allows them to be trusted but not make modifications on the database?

Windows login that is trusted on SQL Server 2005

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

Microsoft SQL Server 2005 is a suite of relational database management system (RDBMS) products providing multi-user database access functionality.Component services include integration (SSIS), reporting (SSRS), analysis (SSAS), data quality, master data, T-SQL and performance tuning. It includes support for managing XML data and allows a database server to be exposed over web services using Tabular Data Stream (TDS) packets encapsulated within SOAP (protocol) requests.

Microsoft SQL Server 2005

Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).