Define SQL Server Logins

Use the SQL Server Login Editor to define authentication methods for a database in a SQL Server 2008, 2012, 2014 or 2016 physical model.

To define SQL Server logins

  1. Click Target - SQL Server, Principals, Logins on the Model menu.

    The SQL Server Login Editor opens.

  2. Select the login in the Navigation Grid that you want to define and work with the following options:

    Note: Click New New icon in property editors to create a new object on the toolbar to create a new login. Use the Enter filter text box to filter a very large list of logins to quickly locate the one that you want to define.

    Name

    Displays the login name. You can change the login name in this field.

    Authentication

    Specifies the authentication type for the login. Select the type from the drop-down list.

    Database

    Specifies the default database for the login. Select a database from the drop-down list or click New New icon in property editors to create a new object to open the SQL Server Database Editor and create a new database.

    Generate

    Generates SQL during forward engineering. Clear the check box if you do not want to generate SQL.

  3. Click the General tab and work with the following options:

    Note: Available options are based on the login type you defined in the Navigation Grid: Windows, Password, Certificate, or Asymmetric Key.

    Password Unlock

    Specifies to unlock a locked login.

    Password Must Change

    Specifies to enforce a password change the next time the user logs in.

    SID

    Defines the GUID of the login. Enter the GUID in this field.

    Language

    Defines the default language of the login. Enter the default language for the login in this field.

    Disabled

    Specifies if the login is enabled or not. Select a value from the drop-down list.

    Check Policy

    Specifies that the Windows password policies of the computer on which SQL Server is running should be enforced on this login. Select a value from the drop-down list.

    Check Expiration

    Specifies whether the password expiration policy should be enforced on this login. Select a value from the drop-down list.

    Credential

    Specifies the credential to map to the login. Select a credential from the drop-down list or click New New icon in property editors to create a new object to open the SQL Server Credential Editor and create a new credential.

    Asymmetric Key

    Specifies the asymmetric key to associate with the login, if the login type is set to Asymmetric Key. Select an asymmetric key from the drop-down list or click New New icon in property editors to create a new object to open the SQL Server Asymmetric Key Editor and create a new asymmetric key.

    Certificate

    Specifies the certificate to associate with the login, if the login type is set to Certificate. Select a certificate from the drop-down list or click New New icon in property editors to create a new object to open the SQL Server Certificate Editor and create a new certificate.

  4. Click the Roles tab to select or remove role usage.
  5. Click the Permission tab to define the permissions for the login.
  6. (Optional) Click the Comment tab and enter any comments that you want to associate with the object.
  7. (Optional) Click the UDP tab to work with user-defined properties for the object.
  8. (Optional) Click the Notes tab to view and edit user notes.
  9. Click Close.

    The login is defined and the SQL Server Login Editor closes.

More information:

Work With Roles in a Property Editor

Define Permissions for an Object in a SQL Server Property Editor

Add a Comment in a Property Editor

Add a UDP in a SQL Server Physical Property Editor