How do I manage the account of a TencentDB for SQL Server instance?
We recommend managing accounts in the SQL Server Console. Click on the instance ID to go to the management page and perform operations on the Account Management page, such as Create Account, Delete Account, and Modify Account Permissions. It is not recommended to operate the database directly on the SSMS client.
How do I manage TencentDB for SQL Server databases?
We recommend managing databases in the SQL Server Console. Click on the instance ID to go to the management page and perform operations on the DMC page, such as Create Database, Delete Database, and Set Database Permissions. It is not recommended to operate the database directly on the SSMS client.
How do I create an account in TencentDB for SQL Server?
We recommend that you create an account in the SQL Server Console. It is not recommended to operate the database directly on the SSMS client. For more information, see Creating Account.
How do I delete an account in TencentDB for SQL Server?
We recommend that you delete an account in the SQL Server Console. It is not recommended to operate the database directly on the SSMS client. For more information, see Deleting Account.
How do I modify account permissions in TencentDB for SQL Server?
We recommend that you modify account permissions in the SQL Server Console. It is not recommended to operate the database directly on the SSMS client. For more information, see Modifying Account Permissions.
How do I create a database in TencentDB for SQL Server?
We recommend that you create a database in the SQL Server Console. It is not recommended to operate the database directly on the SSMS client. For more information, see Creating Database.
How do I delete a database in TencentDB for SQL Server?
We recommend that you delete a database in the SQL Server Console. It is not recommended to operate the database directly on the SSMS client. For more information, see Deleting Database.
How do I modify database permissions in TencentDB for SQL Server?
We recommend that you modify database permissions in the SQL Server Console. It is not recommended to operate the database directly on the SSMS client. For more information, see Setting Database Permissions.
When managing a database with Microsoft SQL Server Management, I was prompted with the message "Login failed. The login is from an untrusted domain and cannot be used with Windows authentication." Why?
Change the authentication method to "SQL Server Authentication".
Does TencentDB for SQL Server support assigning the sysadmin role to users?
Dual-node (formerly High Availability/Cluster version) instances: Considering the potential risk of intrusion, the sysadmin role is not enabled by default. If your business absolutely requires the sysadmin role, please submit a ticket to obtain a solution. When managing databases through Microsoft SQL Server Management, the system may prompt "You must be a member of the sysadmin role to perform this operation."
Single-node (formerly Basic Edition) instances: The sysadmin role can be provided through the admin account. Note that the admin account has the highest-level sysadmin permission and the owner permissions of all databases. After it is enabled, the product SLA will no longer be guaranteed.
How do I create an account with SA permissions in TencentDB for SQL Server?
TencentDB for SQL Server dual-node (formerly high availability/cluster) instances: If your business requires the sysadmin role, please Submit Ticket for a solution. For single-node (formerly basic) versions, authorization can be granted through the console using a super privilege account. Note that the super privilege account has the highest sysadmin permissions and owner permissions for all databases. Once enabled, the product will no longer guarantee instance SLA.
Can I connect to TencentDB for SQL Server with a Windows system account?
For TencentDB for SQL Server non-single-node (formerly basic) instances, it is currently not supported to connect to cloud SQL Server using Windows system accounts. For single-node (formerly basic) instance connections with Windows system accounts, please Submit Ticket for assistance.
What should I do if I forget the login password of TencentDB for SQL Server?
You can <login> to the SQL Server Console, click on the instance ID to go to the management page, and on the Account Management page, select More > Reset Password to reset the password. For more information, see Reset Password.
How do I reset the password of TencentDB for SQL Server?
You can <login> to the SQL Server Console, click on the instance ID to go to the management page, and on the Account Management page, select More > Reset Password to reset the password. For more information, see Reset Password.
What should I do if I cannot create any database or table?
It is possible that your logged-in account is a business account that does not have permissions to create databases/tables. Please assign permissions to the account in the SQL Server Console. For more information, see Setting Database Permissions.
Why don't I have permission to modify database parameters such as blocked process threshold(s)?
The issue might arise from the subaccount users not having the permission to modify instance parameters. It should be operated by the primary account or through CAM CAM to grant the subaccount the necessary permissions.
Can I have the permission to access and create folders on the server in TencentDB for SQL Server?
Currently, TencentDB for SQL Server doesn't allow you to access and create folders on the instance server.
Can I view connection details in TencentDB for SQL Server?
Users can use SSMS to connect to the instance and check by themselves. If the permission is insufficient, please submit a ticket for assistance in requesting elevated database account permissions.
Can I view the slow SQL table in TencentDB for SQL Server?
You can log in to the SQL Server console, in the instance list, click on the instance ID, to enter the operation log page and query and download the slow log logs.
By default, the TencentDB for SQL Server slow SQL table is not open to the public. You can use SSMS to connect to the instance and check by yourself. If the permission is insufficient, please submit a ticket for assistance in requesting elevated database account permissions.
Can I have the SQL trace permission in TencentDB for SQL Server?
Log in to the SQL Server console, accounts created on the Account Management page by default have SQL trace tracking permissions.
If you manually created an account using the SSMS client, SQL trace tracking isn't supported by default. You can authorize it with an admin account, the authorization command is:
GRANT ALTER TRACE TO [$account];.Why does the system prompt that I don't have the permission to enable Profiler in TencentDB for SQL Server?
Accounts created through the SQL Server console's Account Management page by default have profiler permissions; if you manually created an account using the SSMS tool, it doesn't have the permission. You can grant it using the following command:
GRANT ALTER TRACE TO [$account];.Can I use accounts created in the primary instance in read-only instances?
Accounts created in the primary instance will be synced to read-only instances but cannot be managed there. They only support read but not write operations in read-only instances.
Will permissions be synced to replica instances and read-only instances automatically after an account in the primary instance is deleted and created again?
After an account in the TencentDB for SQL Server primary instance is deleted and created again, the permissions and other modifications in the primary instance will be automatically synced to replica instances and read-only instances.
How do I sync account permissions on two-node (formerly High Availability/Cluster Edition) primary and replica instances to read-only instances?
Accounts created in a two-node (formerly High Availability/Cluster Edition) primary instance will be automatically synced to read-only instances. 2017/2019 Enterprise two-node instances use the Always On mode for sync, while 2008R2/2012/2014/2016 Enterprise two-node instances use the publish/subscribe mode for sync. Accounts created in the primary instance in the console will be synced to read-only instances in real time. After the sync is completed, you can use the created login username or modify the password permission in read-only instances.
Can I manage database accounts at a finer granularity (such as source address and access table)?
You can use commands for authorization at a finer granularity after connecting to a database.
Which account permissions are granted by default in TencentDB for SQL Server?
The following account permissions are granted in TencentDB for SQL Server by default:
Server-level roles:
Securityadmin: Manages login and CREATE DATABASE permissions and reads auditing.
Processadmin: Manages SQL Server processes.
Dbcreator: Creates and modifies databases.
Database-level roles:
db_owner: Owns the database and performs all database operations.
db_datareader: Views the data in all user tables in a database.
db_reader: Reads data in the database.
db_writer: Writes data to the database.