I've got the following setup:

我有以下设置：

There is a SQL Server DB with several tables that have triggers set on them (that collect history data). These triggers are CLR stored procedures with EXECUTE AS 'HistoryUser'. The HistoryUser user is a simple user in the database without a login. It has enough permissions to read from all tables and write to the history table.

有一个SQL Server数据库，其中有几个表设置了触发器（收集历史数据）。这些触发器是带有EXECUTE AS'StudusUser'的CLR存储过程。 HistoryUser用户是数据库中的简单用户，无需登录。它具有足够的权限来读取所有表并写入历史表。

When I backup the DB and then restore it to another machine (Virtual Machine in this case, but it does not matter), the triggers don't work anymore. In fact, no impersonation for the user works anymore. Even a simple statement such as this

当我备份数据库然后将其还原到另一台机器（在这种情况下是虚拟机，但无关紧要）时，触发器不再起作用。事实上，没有模仿用户的工作。甚至像这样简单的陈述

exec ('select 3') as user='HistoryUser'

produces an error:

产生错误：

Cannot execute as the database principal because the principal "HistoryUser" does not exist, this type of principal cannot be impersonated, or you do not have permission.

无法作为数据库主体执行，因为主体“HistoryUser”不存在，此类主体不能被模拟，或者您没有权限。

I read in MSDN that this can occur if the DB owner is a domain user, but it isn't. And even if I change it to anything else (their recommended solution) this problem remains.

我在MSDN中读到，如果数据库所有者是域用户，则可能会发生这种情况，但事实并非如此。即使我将其改为其他任何东西（他们推荐的解决方案），这个问题仍然存在。

If I create another user without login, I can use it for impersonation just fine. That is, this works just fine:

如果我创建另一个没有登录的用户，我可以使用它进行模拟就好了。也就是说，这很好用：

create user TestUser without login
go
exec ('select 3') as user='TestUser'

I do not want to recreate all those triggers, so is there any way how I can make the existing HistoryUser work?

我不想重新创建所有这些触发器，所以有什么方法可以使现有的HistoryUser工作吗？

4 个解决方案

 GRANT IMPERSONATE ON USER:: YourUser TO HistoryUser

#1

#2

 GRANT IMPERSONATE ON USER:: YourUser TO HistoryUser

#3

#4