How to Grant Access to Promodag Reports to Multiple Administrators

It is sometimes necessary to consider granting access to the application to multiple people responsible for performing administrative tasks or running ad hoc reports. How can this be done?

A Note on Permissions

Promodag Reports requires permissions at two levels to function properly:

  • At the operating system level: the user account that launches Promodag Reports must be a member of the local administrators group (i.e., members of the Administrators group on this specific computer, not the Windows domain administrators), which allows it to create scheduled tasks.
  • At the SQL Server level: this user account must be the owner of the Promodag database (db_owner) and have specific permissions (public, db_datareader) on the Tempdb system database, which is used to store temporary data during report generation. The special case of SQL Server Express LocalDB, which only allows single-user access, is covered in this article: How to Replace the Owner of a SQL Server Express LocalDB Database.

Possible Solutions

In case multiple administrators need to run Promodag Reports, two main solutions are available:

1. Use the Dedicated Promodag Account

This is the solution we recommend because it is the most practical. Each of the administrators involved has the Promodag account and its password and opens a Remote Desktop session with these credentials when needed to update Promodag Reports or run ad hoc reports.

All other operations (data imports, daily/weekly/monthly reports) are fully automated.

2. Grant the Necessary Permissions Through a Group

Another option: create a dedicated security group and add the user accounts of each member of the team responsible for maintaining Promodag Reports or running ad hoc reports.

First step: add the group to the administrators group of the Promodag server (or "console").

  • Open the Run window and type lusrmgr.msc to open the Local Users and Groups management console.
  • Expand Groups.
  • Select the Administrators group and add the security group you just created.
Add the security group to the local Administrators group

Second step: grant the necessary access to the database.

  • Launch SQL Server Management Studio.
  • Under Object Explorer, open the Security node.
  • Select Logins, then right-click and select New login.
  1. General page: To the right of the Login name field, click Search, select the Promodag security group, and validate with OK.
  2. User Mapping page: select the Promodag database from the list, then the db_owner database role and validate with OK. Then select the Tempdb database, then the public and db_datareader roles and validate with OK.
Grant SQL DB_Owner permission on Promodag database
Grant SQL public and db_datareader permissions on Tempdb database

Members of the Promodag security group will now be able to launch the application and perform all requested administrative tasks, or run reports on demand. It is highly recommended to continue using a dedicated account with a password that never expires to run scheduled tasks.

Related articles:

Comprehensive Exchange reporting made simple for Office 365, On-Premise, and Hybrid environments

Start your free 45-day trial of Promodag Reports

Begin Your Free Trial