patternsqlModerate
Trouble With Database Permissions for sp_send_mail
Viewed 0 times
permissionswithdatabasesp_send_mailfortrouble
Problem
I am trying to send database mail but I am getting
The Foo Login shows that it is mapped to the Foo User in msdb. When I look at the foo user in msdb I see that it has "DatabaseMailUserRole" Checked and has Execute on dbo
What am I missing?
EXECUTE permission denied on the object 'sp_send_dbmail' database 'msdb', schema 'dbo'.. I code I am running is as follows:SELECT SUSER_NAME(), USER_NAME();
Create USER kyle_temp FOR LOGIN Foo
EXECUTE AS USER = 'kyle_temp';
SELECT SUSER_NAME(), USER_NAME();
EXEC msdb.dbo.sp_send_dbmail @profile_name = 'Mail Profile',
@recipients = 'test@test.com',
@subject = 'Test',
@body = 'Test'
REVERT;
DROP USER kyle_tempThe Foo Login shows that it is mapped to the Foo User in msdb. When I look at the foo user in msdb I see that it has "DatabaseMailUserRole" Checked and has Execute on dbo
sp_send_dbmail.What am I missing?
Solution
You are running into the dreaded 'sandboxed' mode of the
There are three ways out:
If in your environment the
If you want a 'correct' solution then:
Trivial, heh? BTW, every time you modify the signed stored proc the signature is lost and the procedure has to be repeated. See Call a procedure in another database from an activated procedure for an example.
I totally don't recommend using
EXECUTE AS context, as described in Extending Database Impersonation by Using EXECUTE AS. In short code running under EXECUTE AS USER ... is trusted only inside the database context, not at the instance context. There are three ways out:
- the easy way: mark the current database as TRUSTWORTHY
ALTER DATABASE [...] SET TRUSTWORTHY ON;
- the correct way out: use code signing
- the cheat: use
EXECUTE AS LOGIN
If in your environment the
dbo of the current database is trusted then you can go with TRUSTWORTHY. It will work, but if this property is set then any db_owner in the current DB can elevate himself to server admin.If you want a 'correct' solution then:
- move this code in an stored proc
- sign the stored proc with a certificate
- drop the private key (so that it can never be used again to sign anything)
- export the public key, import it in
[msdb]
- create user in
[msdb]derived from this certificate
- grant necessary permissions (AUTHENTICATE, EXECUTE on sp_send_mail) to the certificate derived user
Trivial, heh? BTW, every time you modify the signed stored proc the signature is lost and the procedure has to be repeated. See Call a procedure in another database from an activated procedure for an example.
I totally don't recommend using
EXECUTE AS LOGIN instead.Context
StackExchange Database Administrators Q#15420, answer score: 11
Revisions (0)
No revisions yet.