I added a domain security group to my SQL Server logins. IN Active Directory I have added members to this group. My goal is to have this group have only read access to the DB. I have this working on other instances by assigning the db_datareader database role. With one of my instances the group is set to datareader but can't see any of the stored procedures within the DB. Looking further into it when I login as a member of the security group and check the the database level user "dbo" it has a red arrow on it as opposed to all the working instances the "dbo" user does not have this red arrow. Does anyone know how this can be resolved?