Where does the setting to grant or deny ALTER LOGIN exist? We are experiencing a situation where we are able to create our own logins but not any other login. Clearly none of us has the ability to create logins from a permissions perspective since Alter ANY login is not granted and we are not admins either. The only permissions we have are Read/Write at database level and View any database and View any definition at the server level. What could be causing this?
You would need the CONTROL SERVER permission in order to use ALTER ANY LOGIN. Logins are stored in the master database, so higher permissions on a user database do not help you with things in the master database. You'll need to contact whomever is the sysadmin/DBA and request for CONTROL server.