Hi we run 2017 STD. Its sometimes expensive for us to spin up the scheduling tool we have to determine if the service acct we use in that tool has new rights we attempted to give it via addition to an nt group.
So as a shortcut we tried logging into the server (via ssms) we thought we just gave it rights to. And chose Active Directory - Password as the auth mode. We know the service acct's password. But we got the error below.
Is logging in this way a valid way of testing that the permissions we thought we gave have been accomplished? Of course we would have selected from target tables once we got further. If such an "impersonation chain" capability is something that perhaps we don't have but our dba does, how do we ask him if he has it before we waste his time asking him to try it?