tags:

views:

1271

answers:

2
+2  Q: 

Grant permissions to run an SQL server job

I have a job on my MSSQL server 2005, that I want to allow any database user to run.

I'm not worried about security, since the input to the job's actual work comes from a database table. Just running the job, without adding records to that table will do nothing.

I just can't find how to grant public permissions to the job.

Is there any way to do this? The only thing I can think of at this point is to have the job constantly running (or on a schedule), but since it only needs to do any actual work rarely (maybe once every few months) and I do want the work to be done as soon as it exists, this does not seem to be an optimal solution.

+4  A: 

You could create a stored procedure that runs the job. You can use with execute as owner to run the stored procedure as the database owner. That way, the users themselves don't need permissons on sp_start_job.

create procedure dbo.DoYourJob
with execute as owner
as
exec sp_start_job @job_name = 'YourJob'

Grant execute rights on DoYourJob to allow people to start the job.

Of course, you can also put the contents of the job in a procedure, and grant rights to run that. That would allow more interaction, like displaying a result text.

Andomar  2009-12-31 11:00:34
This doesn't work. The non-privileged user can run the procedure, but the procedure cannot execute sp_start_job, because the user doesn't have permissions to execute it.I don't want the contents to be in a procedure, because I don't want the caller to need to wait for the job to end.
 2009-12-31 11:57:39
@shaharmo: You can have the stored procedure execute as the database owner, I'll edit my answer
Andomar  2009-12-31 12:12:34
Still not working. I get the same error. I tried to create DoYourJob in the msdb database, as well as in my database, with the same results.
 2009-12-31 12:28:03
@shaharmo: Strange, I wonder who the database owner is? You can also use `with execute as 'loginname'`, does that work?
Andomar  2009-12-31 12:31:08
It does! Thanks a lot
 2009-12-31 13:22:41
A: 

Basically, permissions are needed on sp_start_job (see permissions section).

The roles are described in "SQL Server Agent Fixed Database Roles" (linked from above)

gbn  2009-12-31 11:00:51
Won't this give all users permissions to run all jobs? I want them to have permission to run only one specific job.
 2009-12-31 11:54:40
Which is what you asked... "grant public permissions to the job"
gbn  2010-01-02 19:29:10

related questions

Sql to query a dbs scheme
Transform Columns into Rows
SQL Client for Mac OS X that works with MS SQL Server
How do you get leading wildcard full-text searches to work in SQL Server?
SQL Server 2000: Is there a way to tell when a record was last modified?
What's the BEST way to remove the time portion of a datetime value (SQL Server)
I need to know how much disk space a table is using in SQL Server
What's the best way to determine if a temporary table exists in SQL Server?
Appropriate pagefile size for SQL Server
Have you ever encountered a query that SQL Server could not execute because it referenced too many tables?
ASP.NET MVC "CRUD" Database Sample
How do I unit test persistence?
Best Book for a new Database Developer
Can I logically reorder columns in a table?
Best way to copy a database in SQL Server 2005/8?
Is Windows Server 2008 "Server Core" appropriate for a SQL Server instance?
Why doesn't SQL Full Text Indexing return results for words containing #?
Client collation and SQL Server 2005
Editing database records by multiple users
Deploying SQL Server Databases from Test to Live
SQL Server 2005 implementation of MySQL REPLACE INTO?
Upgrading SQL Server 6.5
How do I version my MS SQL database in SVN?
How to export data from SQL Server 2005 to MySQL
Check for changes to a SQL table?