diff --git a/contrib/babelfishpg_tsql/src/catalog.c b/contrib/babelfishpg_tsql/src/catalog.c
index a9209fe2d8..4207522e5c 100644
--- a/contrib/babelfishpg_tsql/src/catalog.c
+++ b/contrib/babelfishpg_tsql/src/catalog.c
@@ -9,6 +9,7 @@
 #include "catalog/catalog.h"
 #include "catalog/heap.h"
 #include "catalog/indexing.h"
+#include "catalog/pg_auth_members.h"
 #include "catalog/pg_namespace.h"
 #include "catalog/pg_authid.h"
 #include "catalog/pg_proc.h"
@@ -6287,3 +6288,49 @@ get_tvp_typename_typeschemaname(char *proc_name, char *target_arg_name, char **t
 	if(!xactStarted)
 		CommitTransactionCommand();
 }
+
+/*
+ * Checks if the given member is 'bbf_role_admin' role and has the privilege 
+ * to grant a specified role through direct membership. This privilege is 
+ * determined by the presence of the 'admin_option' flag, which allows the 
+ * member to grant the role to others. 
+ * 
+ * @return true if the member is 'bbf_role_admin' and also has the admin option 
+ *         to grant the specified role; otherwise, returns false.
+ */
+bool
+bbf_check_member_has_direct_priv_to_grant_role(Oid member, Oid role)
+{
+	CatCList   *memlist;
+
+	/* 
+	 * TSQL specific behavior and member must be bbf_role_admin.
+	 * If not return false. 
+	 */
+	if (sql_dialect != SQL_DIALECT_TSQL || !IS_TDS_CONN()
+		|| member !=  get_bbf_role_admin_oid())
+		return false;
+
+	/* 
+	 * Find all existing tuples for given role
+	 * whose member is bbf_role_admin
+	 */
+	memlist = SearchSysCacheList2(AUTHMEMROLEMEM,
+									ObjectIdGetDatum(role),
+									ObjectIdGetDatum(member));
+	for (int i = 0; i < memlist->n_members; i++)
+	{
+		HeapTuple	tup = &memlist->members[i]->tuple;
+		Form_pg_auth_members form = (Form_pg_auth_members) GETSTRUCT(tup);
+	
+		/* Return true if admin_option is true */
+		if (form->admin_option)
+		{
+			ReleaseSysCacheList(memlist);
+			return true;
+		}
+	}
+
+	ReleaseSysCacheList(memlist);
+	return false;
+}
\ No newline at end of file
diff --git a/contrib/babelfishpg_tsql/src/catalog.h b/contrib/babelfishpg_tsql/src/catalog.h
index c6ecfab882..32c2f9cffb 100644
--- a/contrib/babelfishpg_tsql/src/catalog.h
+++ b/contrib/babelfishpg_tsql/src/catalog.h
@@ -28,6 +28,7 @@ extern bool IsPLtsqlExtendedCatalog(Oid relationId);
 extern bool IsPltsqlToastRelationHook(Relation relation);
 extern bool IsPltsqlToastClassHook(Form_pg_class pg_class_tup);
 extern void pltsql_drop_relation_refcnt_hook(Relation relation);
+extern bool bbf_check_member_has_direct_priv_to_grant_role(Oid member, Oid role);
 
 /*****************************************
  *			SYS schema
diff --git a/contrib/babelfishpg_tsql/src/hooks.c b/contrib/babelfishpg_tsql/src/hooks.c
index 68ed3069bf..add2654c3e 100644
--- a/contrib/babelfishpg_tsql/src/hooks.c
+++ b/contrib/babelfishpg_tsql/src/hooks.c
@@ -304,6 +304,7 @@ static pltsql_replace_non_determinstic_hook_type prev_pltsql_replace_non_determi
 static pltsql_is_partitioned_table_reloptions_allowed_hook_type prev_pltsql_is_partitioned_table_reloptions_allowed_hook = NULL;
 static ExecFuncProc_AclCheck_hook_type prev_ExecFuncProc_AclCheck_hook = NULL;
 static bbf_execute_grantstmt_as_dbsecadmin_hook_type prev_bbf_execute_grantstmt_as_dbsecadmin_hook = NULL;
+static bbf_check_member_has_direct_priv_to_grant_role_hook_type prev_bbf_check_member_has_direct_priv_to_grant_role_hook = NULL;
 
 /*****************************************
  * 			Install / Uninstall
@@ -522,6 +523,9 @@ InstallExtendedHooks(void)
 
 	prev_bbf_execute_grantstmt_as_dbsecadmin_hook = bbf_execute_grantstmt_as_dbsecadmin_hook;
 	bbf_execute_grantstmt_as_dbsecadmin_hook = handle_grantstmt_for_dbsecadmin;
+
+	prev_bbf_check_member_has_direct_priv_to_grant_role_hook = bbf_check_member_has_direct_priv_to_grant_role_hook;
+	bbf_check_member_has_direct_priv_to_grant_role_hook = bbf_check_member_has_direct_priv_to_grant_role;
 	
 	pltsql_get_object_identity_event_trigger_hook = pltsql_get_object_identity_event_trigger;
 
@@ -600,6 +604,8 @@ UninstallExtendedHooks(void)
 	pltsql_is_partitioned_table_reloptions_allowed_hook = prev_pltsql_is_partitioned_table_reloptions_allowed_hook;	
 	ExecFuncProc_AclCheck_hook = prev_ExecFuncProc_AclCheck_hook;
 	bbf_execute_grantstmt_as_dbsecadmin_hook = prev_bbf_execute_grantstmt_as_dbsecadmin_hook;
+	bbf_check_member_has_direct_priv_to_grant_role_hook = prev_bbf_check_member_has_direct_priv_to_grant_role_hook;
+
 
 	bbf_InitializeParallelDSM_hook = NULL;
 	bbf_ParallelWorkerMain_hook = NULL;
@@ -6032,4 +6038,4 @@ remove_db_name_in_schema(const char *object_name, const char *object_type)
 	pfree(splited_object_name);
 
 	return (const char *)pstrdup(object_name + prefix_len);
-}
+}
\ No newline at end of file
diff --git a/test/JDBC/expected/db_securityadmin-vu-verify.out b/test/JDBC/expected/db_securityadmin-vu-verify.out
index e8bed8ed3f..c4aa540f35 100644
--- a/test/JDBC/expected/db_securityadmin-vu-verify.out
+++ b/test/JDBC/expected/db_securityadmin-vu-verify.out
@@ -1439,6 +1439,15 @@ t
 ~~END~~
 
 
+-- Wait to sync with another session
+SELECT pg_sleep(1);
+go
+~~START~~
+void
+
+~~END~~
+
+
 -- tsql
 DROP LOGIN db_securityadmin_restrictions_login;
 GO
diff --git a/test/JDBC/expected/test_windows_login-vu-prepare.out b/test/JDBC/expected/test_windows_login-vu-prepare.out
index 6cb5a741ec..1edefb9eb2 100644
--- a/test/JDBC/expected/test_windows_login-vu-prepare.out
+++ b/test/JDBC/expected/test_windows_login-vu-prepare.out
@@ -1,5 +1,4 @@
 -- psql
--- TODO: BABEL-5349
 do 
 $$ begin 
     if not exists (select * from pg_catalog.pg_roles where rolname = 'rds_ad') 
diff --git a/test/JDBC/expected/test_windows_login-vu-verify.out b/test/JDBC/expected/test_windows_login-vu-verify.out
index f09f266b3b..4d9f2b0ff4 100644
--- a/test/JDBC/expected/test_windows_login-vu-verify.out
+++ b/test/JDBC/expected/test_windows_login-vu-verify.out
@@ -208,3 +208,27 @@ int8
 1
 ~~END~~
 
+
+-- validates bbf_role_admin is direct member of all the role entries of babelfish_authid_user_ext and babelfish_authid_login_ext with admin option
+-- show entries of which bbf_role_admin is not direct member of.
+-- should be 0
+WITH bbf_admin_roles AS (
+    SELECT r.rolname
+    FROM pg_auth_members m
+    JOIN pg_roles r ON (m.roleid = r.oid)
+    WHERE m.member IN (SELECT oid FROM pg_roles WHERE rolname = 'bbf_role_admin')
+    AND m.admin_option = true
+)
+SELECT COUNT(*)
+FROM (
+    SELECT rolname FROM sys.babelfish_authid_login_ext WHERE rolname != 'bbf_role_admin'
+    UNION ALL
+    SELECT rolname FROM sys.babelfish_authid_user_ext
+)
+WHERE rolname NOT IN (SELECT rolname FROM bbf_admin_roles);
+GO
+~~START~~
+int8
+0
+~~END~~
+
diff --git a/test/JDBC/expected/test_windows_login_before-17_2-vu-cleanup.out b/test/JDBC/expected/test_windows_login_before-17_2-vu-cleanup.out
new file mode 100644
index 0000000000..870cf9753e
--- /dev/null
+++ b/test/JDBC/expected/test_windows_login_before-17_2-vu-cleanup.out
@@ -0,0 +1,91 @@
+-- tsql
+DROP LOGIN PassWordUser;
+GO
+
+-- test for drop login with upn format
+DROP LOGIN [aduser@AD];
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: Cannot drop the login 'aduser@ad', because it does not exist or you do not have permission.)~~
+
+
+DROP LOGIN [ad\adUSer];
+GO
+
+DROP LOGIN [ad\aduserDB];
+GO
+
+DROP LOGIN [ad\Aduserlanguage];
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: Cannot drop the login 'aduserlanguage@AD', because it does not exist or you do not have permission.)~~
+
+
+DROP LOGIN [ad\Aduserdblanguage];
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: Cannot drop the login 'aduserdblanguage@AD', because it does not exist or you do not have permission.)~~
+
+
+DROP LOGIN [ad\AduserdbEnglish];
+GO
+
+DROP LOGIN [ad\Aduseroption];
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: Cannot drop the login 'aduseroption@AD', because it does not exist or you do not have permission.)~~
+
+
+DROP LOGIN [babel\aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa]
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: Cannot drop the login 'aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa@BABEL', because it does not exist or you do not have permission.)~~
+
+
+DROP LOGIN [ba.bel\username];
+GO
+
+-- test for non-existent login
+DROP LOGIN [babel\non_existent_login]
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: Cannot drop the login 'non_existent_login@BABEL', because it does not exist or you do not have permission.)~~
+
+
+-- drop login with different casing
+DROP LOGIN UserPassword;
+GO
+
+DROP LOGIN [BabeL\DupLicate];
+GO
+
+DROP LOGIN [Babel\DuplicateDefaultDB];
+GO
+
+-- test drop logins for logins with different language names
+-- Arabic
+DROP LOGIN [babel\كلب];
+GO
+
+-- Mongolian
+DROP LOGIN [babel\өглөө];
+GO
+
+-- Greek
+DROP LOGIN [babel\ελπίδα];
+GO
+
+-- Chinese
+DROP LOGIN [babel\爱];
+GO
+
+DROP DATABASE ad_db;
+GO
+
+
diff --git a/test/JDBC/expected/test_windows_login_before-17_2-vu-prepare.out b/test/JDBC/expected/test_windows_login_before-17_2-vu-prepare.out
new file mode 100644
index 0000000000..1edefb9eb2
--- /dev/null
+++ b/test/JDBC/expected/test_windows_login_before-17_2-vu-prepare.out
@@ -0,0 +1,498 @@
+-- psql
+do 
+$$ begin 
+    if not exists (select * from pg_catalog.pg_roles where rolname = 'rds_ad') 
+        then create role rds_ad NOSUPERUSER NOLOGIN NOCREATEROLE INHERIT NOREPLICATION; 
+    end if; 
+end $$;
+GO
+-- terminate-psql-conn
+
+-- tsql
+CREATE DATABASE ad_db;
+GO
+
+CREATE LOGIN PassWordUser with PASSWORD='123';
+GO
+
+-- positive test case
+CREATE LOGIN [ad\Aduser] from windows;
+GO
+
+-- test for default database
+CREATE LOGIN [ad\Aduserdb] from windows with default_database=[ad_db];
+GO
+
+-- test for default language
+CREATE LOGIN [ad\Aduserlanguage] from windows with default_language=[German];
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: '[German]' is not currently supported in Babelfish. please use babelfishpg_tsql.escape_hatch_language_non_english to ignore)~~
+
+
+-- test for default database and default language
+CREATE LOGIN [ad\Aduserdblanguage] from windows with default_database=[ad_db], default_language=[German];
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: '[German]' is not currently supported in Babelfish. please use babelfishpg_tsql.escape_hatch_language_non_english to ignore)~~
+
+
+CREATE LOGIN [ad\AduserdbEnglish] from windows with default_database=[ad_db], default_language=[English];
+GO
+
+-- test for invalid options for windows
+CREATE LOGIN [ad\Aduseroption] from windows with CHECK_POLICY = OFF, CHECK_EXPIRATION = OFF;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: syntax error near '=' at line 2 and character position 62)~~
+
+
+
+-- test boundary conditions
+-- test for when the login_name is greater than 21 characters
+create login [babel\aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: The login name 'babel\aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa' has invalid length. Login name length should be between 1 and 20 for windows login.)~~
+
+
+-- test for when the login_name length is 0
+CREATE LOGIN [babel\] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: The login name 'babel\' has invalid length. Login name length should be between 1 and 20 for windows login.)~~
+
+
+--test for when the total login name, i.e., domain+user is greater than 64
+CREATE LOGIN [babelforapg.individualad.testfornumberofcharactersintotalwhichisnotallowedinpostgres\user] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: The login name 'user@BABELFORAPG.INDIVIDUALAD.TESTFORNUMBEROFCHARACTERSINTOTALWHICHISNOTALLOWEDINPOSTGRES' is too long. Maximum length is 63.)~~
+
+
+-- test for when the login_name contains invalid characters
+CREATE LOGIN [babeluser] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babeluser' is not a valid Windows NT name. Give the complete name: <domain\username>.)~~
+
+CREATE LOGIN [babel\user\] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\user\' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\us\er] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\us\er' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\user/] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\user/' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\us/er] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\us/er' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\user[] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\user[' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\u[ser] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\u[ser' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\use]r] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: syntax error near 'r' at line 1 and character position 24)~~
+
+CREATE LOGIN [babel\user;] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\user;' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\us;er] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\us;er' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\user:] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\user:' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\us:er] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\us:er' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\user|] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\user|' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\use|r] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\use|r' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\user=] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\user=' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\u=ser] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\u=ser' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\user,] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\user,' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\us,er] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\us,er' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\user+] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\user+' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\u+ser] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\u+ser' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\user*] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\user*' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\user*] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\user*' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\user?] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\user?' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\us?er] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\us?er' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\user>] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\user>' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\u>ser] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\u>ser' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\user<] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\user<' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\us<er] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\us<er' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\user@] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\user@' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\us@er] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\us@er' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\us\er@] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\us\er@' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [babel\us<>er] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'babel\us<>er' is not a valid name because it contains invalid characters.)~~
+
+
+-- test to show UPN format is not allowed
+CREATE LOGIN [user@BABEL] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'user@BABEL' is not a valid Windows NT name. Give the complete name: <domain\username>.)~~
+
+
+-- test for duplicate login
+CREATE LOGIN usErpassWord with PASSWORD = '123';
+GO
+
+CREATE LOGIN UserPassword with PASSWORD = '098'; 
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: The Server principal 'userpassword' already exists)~~
+
+
+CREATE LOGIN [babel\duplicate] from windows;
+GO
+
+CREATE LOGIN [BabeL\DupLicate] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: The Server principal 'duplicate@BABEL' already exists)~~
+
+
+CREATE LOGIN [babel\duplicatedefaultdb] from windows with default_database=[master];
+GO
+
+CREATE LOGIN [Babel\DuplicateDefaultDB] from windows with default_database=[ad_db];
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: The Server principal 'duplicatedefaultdb@BABEL' already exists)~~
+
+
+-- test for empty domain name
+CREATE LOGIN [\adnodomain] from windows;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: The login name '\adnodomain' is invalid. The domain can not be empty.)~~
+
+
+
+-- test for login names with different language
+-- Arabic
+CREATE LOGIN [babel\كلب] from windows;
+GO
+
+-- Mongolian
+CREATE LOGIN [babel\өглөө] from windows;
+GO
+
+-- Greek
+CREATE LOGIN [babel\ελπίδα] from windows;
+GO
+
+-- Chinese
+CREATE LOGIN [babel\爱] from windows;
+GO
+
+-- test for windows login with password --> should throw error
+CREATE LOGIN [babel\adbabel] from windows with password='1234';
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: syntax error near '=' at line 2 and character position 55)~~
+
+
+-- test for when the domain name contains invalid characters
+CREATE LOGIN [<script>!@#$%^&*()\idontexist2] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: '<script>!@#$%^&*()\idontexist2' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba,bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba,bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba~el\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba~el\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba:bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba:bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba!bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba!bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba@bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba@bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba#bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba#bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba$bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba$bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba%bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba%bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba_bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba_bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba^bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba^bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba"bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba"bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba'bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba'bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba(bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba(bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba)bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba)bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba{bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba{bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba}bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba}bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba\bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba\bel\username' is not a valid name because it contains invalid characters.)~~
+
+CREATE LOGIN [ba/bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba/bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba<bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba<bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba>bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba>bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba&bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba&bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba*bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba*bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba|bel\username] FROM WINDOWS;
+GO
+~~ERROR (Code: 33557097)~~
+
+~~ERROR (Message: 'ba|bel\username' is not valid because the domain name contains invalid characters.)~~
+
+CREATE LOGIN [ba.bel\username] FROM WINDOWS;
+GO
diff --git a/test/JDBC/expected/test_windows_login_before-17_2-vu-verify.out b/test/JDBC/expected/test_windows_login_before-17_2-vu-verify.out
new file mode 100644
index 0000000000..f09f266b3b
--- /dev/null
+++ b/test/JDBC/expected/test_windows_login_before-17_2-vu-verify.out
@@ -0,0 +1,210 @@
+-- psql
+select rolname, orig_loginname, type, default_database_name, default_language_name from sys.babelfish_authid_login_ext
+where rolname in ('passworduser','aduser@AD','aduserdb@AD','aduserdbenglish@AD','userpassword','duplicate@BABEL','duplicatedefaultdb@BABEL',
+'كلب@BABEL','өглөө@BABEL','ελπίδα@BABEL','爱@BABEL') order by rolname;
+GO
+~~START~~
+name#!#"sys"."varchar"#!#bpchar#!#"sys"."varchar"#!#"sys"."varchar"
+aduser@AD#!#ad\Aduser#!#U#!#master#!#English
+aduserdb@AD#!#ad\Aduserdb#!#U#!#ad_db#!#English
+aduserdbenglish@AD#!#ad\AduserdbEnglish#!#U#!#ad_db#!#English
+duplicate@BABEL#!#babel\duplicate#!#U#!#master#!#English
+duplicatedefaultdb@BABEL#!#babel\duplicatedefaultdb#!#U#!#master#!#English
+passworduser#!#PassWordUser#!#S#!#master#!#English
+userpassword#!#usErpassWord#!#S#!#master#!#English
+ελπίδα@BABEL#!#babel\ελπίδα#!#U#!#master#!#English
+өглөө@BABEL#!#babel\өглөө#!#U#!#master#!#English
+كلب@BABEL#!#babel\كلب#!#U#!#master#!#English
+爱@BABEL#!#babel\爱#!#U#!#master#!#English
+~~END~~
+
+
+-- tsql
+select rolname, orig_loginname, default_database_name, default_language_name from sys.babelfish_authid_login_ext
+where orig_loginname in ('PassWordUser','ad\Aduser','ad\AduserdbEnglish','usErpassWord','babel\duplicate','babel\duplicatedefaultdb') order by rolname;
+GO
+~~START~~
+varchar#!#nvarchar#!#nvarchar#!#nvarchar
+aduser@AD#!#ad\Aduser#!#master#!#English
+aduserdbenglish@AD#!#ad\AduserdbEnglish#!#ad_db#!#English
+duplicate@BABEL#!#babel\duplicate#!#master#!#English
+duplicatedefaultdb@BABEL#!#babel\duplicatedefaultdb#!#master#!#English
+passworduser#!#PassWordUser#!#master#!#English
+userpassword#!#usErpassWord#!#master#!#English
+~~END~~
+
+
+-- tsql
+-- add [ad\Aduser] to sysadmin
+ALTER SERVER ROLE sysadmin ADD MEMBER [ad\Aduser];
+GO
+
+-- tsql
+SELECT COUNT(*) FROM pg_auth_members
+WHERE roleid = (SELECT oid FROM pg_roles WHERE rolname = 'sysadmin')
+AND "member" = (SELECT oid FROM pg_roles WHERE rolname = 'aduser@AD');
+GO
+~~START~~
+int
+1
+~~END~~
+
+
+-- tsql
+ALTER SERVER ROLE sysadmin DROP MEMBER [ad\Aduser];
+GO
+
+-- tsql
+SELECT COUNT(*) FROM pg_auth_members
+WHERE roleid = (SELECT oid FROM pg_roles WHERE rolname = 'sysadmin')
+AND "member" = (SELECT oid FROM pg_roles WHERE rolname = 'aduser@AD');
+GO
+~~START~~
+int
+0
+~~END~~
+
+
+-- tsql
+select count(*) from sys.server_principals where name = 'aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa@BABEL';
+GO
+~~START~~
+int
+0
+~~END~~
+
+select count(*) from sys.server_principals where name = 'passworduser';
+GO
+~~START~~
+int
+1
+~~END~~
+
+select count(*) from sys.server_principals where name = 'AD\aduser';
+GO
+~~START~~
+int
+1
+~~END~~
+
+select count(*) from sys.server_principals where name = 'AD\aduserdb';
+GO
+~~START~~
+int
+1
+~~END~~
+
+select count(*) from sys.server_principals where name = 'AD\aduserdbenglish';
+GO
+~~START~~
+int
+1
+~~END~~
+
+select count(*) from sys.server_principals where name = 'userpassword';
+GO
+~~START~~
+int
+1
+~~END~~
+
+select count(*) from sys.server_principals where name = 'BABEL\duplicate';
+GO
+~~START~~
+int
+1
+~~END~~
+
+select count(*) from sys.server_principals where name = 'BABEL\duplicatedefaultdb';
+GO
+~~START~~
+int
+1
+~~END~~
+
+
+-- psql
+select count(*) from pg_roles where rolname = 'aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa@BABEL';
+GO
+~~START~~
+int8
+0
+~~END~~
+
+select count(*) from pg_roles where rolname = 'passworduser';
+GO
+~~START~~
+int8
+1
+~~END~~
+
+select count(*) from pg_roles where rolname = 'aduser@AD';
+GO
+~~START~~
+int8
+1
+~~END~~
+
+select count(*) from pg_roles where rolname = 'aduserdb@AD';
+GO
+~~START~~
+int8
+1
+~~END~~
+
+select count(*) from pg_roles where rolname = 'aduserdbenglish@AD';
+GO
+~~START~~
+int8
+1
+~~END~~
+
+select count(*) from pg_roles where rolname = 'userpassword';
+GO
+~~START~~
+int8
+1
+~~END~~
+
+select count(*) from pg_roles where rolname = 'duplicate@BABEL';
+GO
+~~START~~
+int8
+1
+~~END~~
+
+select count(*) from pg_roles where rolname = 'duplicatedefaultdb@BABEL';
+GO
+~~START~~
+int8
+1
+~~END~~
+
+select count(*) from pg_roles where rolname = 'كلب@BABEL';
+GO
+~~START~~
+int8
+1
+~~END~~
+
+select count(*) from pg_roles where rolname = 'өглөө@BABEL';
+GO
+~~START~~
+int8
+1
+~~END~~
+
+select count(*) from pg_roles where rolname = 'ελπίδα@BABEL';
+GO
+~~START~~
+int8
+1
+~~END~~
+
+select count(*) from pg_roles where rolname = '爱@BABEL';
+GO
+~~START~~
+int8
+1
+~~END~~
+
diff --git a/test/JDBC/input/ownership/db_securityadmin-vu-verify.mix b/test/JDBC/input/ownership/db_securityadmin-vu-verify.mix
index 57a2cee142..9161ae14f9 100644
--- a/test/JDBC/input/ownership/db_securityadmin-vu-verify.mix
+++ b/test/JDBC/input/ownership/db_securityadmin-vu-verify.mix
@@ -832,6 +832,10 @@ SELECT pg_terminate_backend(pid) FROM pg_stat_get_activity(NULL)
 WHERE sys.suser_name(usesysid) = 'db_securityadmin_restrictions_login' AND backend_type = 'client backend' AND usesysid IS NOT NULL;
 GO
 
+-- Wait to sync with another session
+SELECT pg_sleep(1);
+go
+
 -- tsql
 DROP LOGIN db_securityadmin_restrictions_login;
 GO
diff --git a/test/JDBC/input/test_windows_login-vu-prepare.mix b/test/JDBC/input/test_windows_login-vu-prepare.mix
index 69b383911f..c2f59c578d 100644
--- a/test/JDBC/input/test_windows_login-vu-prepare.mix
+++ b/test/JDBC/input/test_windows_login-vu-prepare.mix
@@ -1,5 +1,4 @@
--- sla 180000
--- TODO: BABEL-5349
+-- sla 55000
 -- psql
 do 
 $$ begin 
diff --git a/test/JDBC/input/test_windows_login-vu-verify.mix b/test/JDBC/input/test_windows_login-vu-verify.mix
index bc31a4de40..754f667441 100644
--- a/test/JDBC/input/test_windows_login-vu-verify.mix
+++ b/test/JDBC/input/test_windows_login-vu-verify.mix
@@ -72,4 +72,23 @@ GO
 select count(*) from pg_roles where rolname = 'ελπίδα@BABEL';
 GO
 select count(*) from pg_roles where rolname = '爱@BABEL';
+GO
+
+-- validates bbf_role_admin is direct member of all the role entries of babelfish_authid_user_ext and babelfish_authid_login_ext with admin option
+-- show entries of which bbf_role_admin is not direct member of.
+-- should be 0
+WITH bbf_admin_roles AS (
+    SELECT r.rolname
+    FROM pg_auth_members m
+    JOIN pg_roles r ON (m.roleid = r.oid)
+    WHERE m.member IN (SELECT oid FROM pg_roles WHERE rolname = 'bbf_role_admin')
+    AND m.admin_option = true
+)
+SELECT COUNT(*)
+FROM (
+    SELECT rolname FROM sys.babelfish_authid_login_ext WHERE rolname != 'bbf_role_admin'
+    UNION ALL
+    SELECT rolname FROM sys.babelfish_authid_user_ext
+)
+WHERE rolname NOT IN (SELECT rolname FROM bbf_admin_roles);
 GO
\ No newline at end of file
diff --git a/test/JDBC/input/test_windows_login_before-17_2-vu-cleanup.mix b/test/JDBC/input/test_windows_login_before-17_2-vu-cleanup.mix
new file mode 100644
index 0000000000..fc073dc8e4
--- /dev/null
+++ b/test/JDBC/input/test_windows_login_before-17_2-vu-cleanup.mix
@@ -0,0 +1,67 @@
+-- tsql
+DROP LOGIN PassWordUser;
+GO
+
+-- test for drop login with upn format
+DROP LOGIN [aduser@AD];
+GO
+
+DROP LOGIN [ad\adUSer];
+GO
+
+DROP LOGIN [ad\aduserDB];
+GO
+
+DROP LOGIN [ad\Aduserlanguage];
+GO
+
+DROP LOGIN [ad\Aduserdblanguage];
+GO
+
+DROP LOGIN [ad\AduserdbEnglish];
+GO
+
+DROP LOGIN [ad\Aduseroption];
+GO
+
+DROP LOGIN [babel\aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa]
+GO
+
+DROP LOGIN [ba.bel\username];
+GO
+
+-- test for non-existent login
+DROP LOGIN [babel\non_existent_login]
+GO
+
+-- drop login with different casing
+DROP LOGIN UserPassword;
+GO
+
+DROP LOGIN [BabeL\DupLicate];
+GO
+
+DROP LOGIN [Babel\DuplicateDefaultDB];
+GO
+
+-- test drop logins for logins with different language names
+-- Arabic
+DROP LOGIN [babel\كلب];
+GO
+
+-- Mongolian
+DROP LOGIN [babel\өглөө];
+GO
+
+-- Greek
+DROP LOGIN [babel\ελπίδα];
+GO
+
+-- Chinese
+DROP LOGIN [babel\爱];
+GO
+
+DROP DATABASE ad_db;
+GO
+
+
diff --git a/test/JDBC/input/test_windows_login_before-17_2-vu-prepare.mix b/test/JDBC/input/test_windows_login_before-17_2-vu-prepare.mix
new file mode 100644
index 0000000000..90e9902ed5
--- /dev/null
+++ b/test/JDBC/input/test_windows_login_before-17_2-vu-prepare.mix
@@ -0,0 +1,223 @@
+-- sla 180000
+-- psql
+do 
+$$ begin 
+    if not exists (select * from pg_catalog.pg_roles where rolname = 'rds_ad') 
+        then create role rds_ad NOSUPERUSER NOLOGIN NOCREATEROLE INHERIT NOREPLICATION; 
+    end if; 
+end $$;
+GO
+-- terminate-psql-conn
+
+-- tsql
+CREATE DATABASE ad_db;
+GO
+
+CREATE LOGIN PassWordUser with PASSWORD='123';
+GO
+
+-- positive test case
+CREATE LOGIN [ad\Aduser] from windows;
+GO
+
+-- test for default database
+CREATE LOGIN [ad\Aduserdb] from windows with default_database=[ad_db];
+GO
+
+-- test for default language
+CREATE LOGIN [ad\Aduserlanguage] from windows with default_language=[German];
+GO
+
+-- test for default database and default language
+CREATE LOGIN [ad\Aduserdblanguage] from windows with default_database=[ad_db], default_language=[German];
+GO
+
+CREATE LOGIN [ad\AduserdbEnglish] from windows with default_database=[ad_db], default_language=[English];
+GO
+
+-- test for invalid options for windows
+CREATE LOGIN [ad\Aduseroption] from windows with CHECK_POLICY = OFF, CHECK_EXPIRATION = OFF;
+GO
+
+-- test boundary conditions
+
+-- test for when the login_name is greater than 21 characters
+create login [babel\aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa] from windows;
+GO
+
+-- test for when the login_name length is 0
+CREATE LOGIN [babel\] from windows;
+GO
+
+--test for when the total login name, i.e., domain+user is greater than 64
+CREATE LOGIN [babelforapg.individualad.testfornumberofcharactersintotalwhichisnotallowedinpostgres\user] from windows;
+GO
+
+-- test for when the login_name contains invalid characters
+CREATE LOGIN [babeluser] from windows;
+GO
+CREATE LOGIN [babel\user\] from windows;
+GO
+CREATE LOGIN [babel\us\er] from windows;
+GO
+CREATE LOGIN [babel\user/] from windows;
+GO
+CREATE LOGIN [babel\us/er] from windows;
+GO
+CREATE LOGIN [babel\user[] from windows;
+GO
+CREATE LOGIN [babel\u[ser] from windows;
+GO
+CREATE LOGIN [babel\use]r] from windows;
+GO
+CREATE LOGIN [babel\user;] from windows;
+GO
+CREATE LOGIN [babel\us;er] from windows;
+GO
+CREATE LOGIN [babel\user:] from windows;
+GO
+CREATE LOGIN [babel\us:er] from windows;
+GO
+CREATE LOGIN [babel\user|] from windows;
+GO
+CREATE LOGIN [babel\use|r] from windows;
+GO
+CREATE LOGIN [babel\user=] from windows;
+GO
+CREATE LOGIN [babel\u=ser] from windows;
+GO
+CREATE LOGIN [babel\user,] from windows;
+GO
+CREATE LOGIN [babel\us,er] from windows;
+GO
+CREATE LOGIN [babel\user+] from windows;
+GO
+CREATE LOGIN [babel\u+ser] from windows;
+GO
+CREATE LOGIN [babel\user*] from windows;
+GO
+CREATE LOGIN [babel\user*] from windows;
+GO
+CREATE LOGIN [babel\user?] from windows;
+GO
+CREATE LOGIN [babel\us?er] from windows;
+GO
+CREATE LOGIN [babel\user>] from windows;
+GO
+CREATE LOGIN [babel\u>ser] from windows;
+GO
+CREATE LOGIN [babel\user<] from windows;
+GO
+CREATE LOGIN [babel\us<er] from windows;
+GO
+CREATE LOGIN [babel\user@] from windows;
+GO
+CREATE LOGIN [babel\us@er] from windows;
+GO
+CREATE LOGIN [babel\us\er@] from windows;
+GO
+CREATE LOGIN [babel\us<>er] from windows;
+GO
+
+-- test to show UPN format is not allowed
+CREATE LOGIN [user@BABEL] from windows;
+GO
+
+-- test for duplicate login
+CREATE LOGIN usErpassWord with PASSWORD = '123';
+GO
+
+CREATE LOGIN UserPassword with PASSWORD = '098'; 
+GO
+
+CREATE LOGIN [babel\duplicate] from windows;
+GO
+
+CREATE LOGIN [BabeL\DupLicate] from windows;
+GO
+
+CREATE LOGIN [babel\duplicatedefaultdb] from windows with default_database=[master];
+GO
+
+CREATE LOGIN [Babel\DuplicateDefaultDB] from windows with default_database=[ad_db];
+GO
+
+-- test for empty domain name
+CREATE LOGIN [\adnodomain] from windows;
+GO
+
+
+-- test for login names with different language
+-- Arabic
+CREATE LOGIN [babel\كلب] from windows;
+GO
+
+-- Mongolian
+CREATE LOGIN [babel\өглөө] from windows;
+GO
+
+-- Greek
+CREATE LOGIN [babel\ελπίδα] from windows;
+GO
+
+-- Chinese
+CREATE LOGIN [babel\爱] from windows;
+GO
+
+-- test for windows login with password --> should throw error
+CREATE LOGIN [babel\adbabel] from windows with password='1234';
+GO
+
+-- test for when the domain name contains invalid characters
+CREATE LOGIN [<script>!@#$%^&*()\idontexist2] FROM WINDOWS;
+GO
+CREATE LOGIN [ba,bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba~el\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba:bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba!bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba@bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba#bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba$bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba%bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba_bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba^bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba"bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba'bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba(bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba)bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba{bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba}bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba\bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba/bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba<bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba>bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba&bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba*bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba|bel\username] FROM WINDOWS;
+GO
+CREATE LOGIN [ba.bel\username] FROM WINDOWS;
+GO
diff --git a/test/JDBC/input/test_windows_login_before-17_2-vu-verify.mix b/test/JDBC/input/test_windows_login_before-17_2-vu-verify.mix
new file mode 100644
index 0000000000..bc31a4de40
--- /dev/null
+++ b/test/JDBC/input/test_windows_login_before-17_2-vu-verify.mix
@@ -0,0 +1,75 @@
+-- psql
+select rolname, orig_loginname, type, default_database_name, default_language_name from sys.babelfish_authid_login_ext
+where rolname in ('passworduser','aduser@AD','aduserdb@AD','aduserdbenglish@AD','userpassword','duplicate@BABEL','duplicatedefaultdb@BABEL',
+'كلب@BABEL','өглөө@BABEL','ελπίδα@BABEL','爱@BABEL') order by rolname;
+GO
+
+-- tsql
+select rolname, orig_loginname, default_database_name, default_language_name from sys.babelfish_authid_login_ext
+where orig_loginname in ('PassWordUser','ad\Aduser','ad\AduserdbEnglish','usErpassWord','babel\duplicate','babel\duplicatedefaultdb') order by rolname;
+GO
+
+-- tsql
+-- add [ad\Aduser] to sysadmin
+ALTER SERVER ROLE sysadmin ADD MEMBER [ad\Aduser];
+GO
+
+-- tsql
+SELECT COUNT(*) FROM pg_auth_members
+WHERE roleid = (SELECT oid FROM pg_roles WHERE rolname = 'sysadmin')
+AND "member" = (SELECT oid FROM pg_roles WHERE rolname = 'aduser@AD');
+GO
+
+-- tsql
+ALTER SERVER ROLE sysadmin DROP MEMBER [ad\Aduser];
+GO
+
+-- tsql
+SELECT COUNT(*) FROM pg_auth_members
+WHERE roleid = (SELECT oid FROM pg_roles WHERE rolname = 'sysadmin')
+AND "member" = (SELECT oid FROM pg_roles WHERE rolname = 'aduser@AD');
+GO
+
+-- tsql
+select count(*) from sys.server_principals where name = 'aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa@BABEL';
+GO
+select count(*) from sys.server_principals where name = 'passworduser';
+GO
+select count(*) from sys.server_principals where name = 'AD\aduser';
+GO
+select count(*) from sys.server_principals where name = 'AD\aduserdb';
+GO
+select count(*) from sys.server_principals where name = 'AD\aduserdbenglish';
+GO
+select count(*) from sys.server_principals where name = 'userpassword';
+GO
+select count(*) from sys.server_principals where name = 'BABEL\duplicate';
+GO
+select count(*) from sys.server_principals where name = 'BABEL\duplicatedefaultdb';
+GO
+
+-- psql
+select count(*) from pg_roles where rolname = 'aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa@BABEL';
+GO
+select count(*) from pg_roles where rolname = 'passworduser';
+GO
+select count(*) from pg_roles where rolname = 'aduser@AD';
+GO
+select count(*) from pg_roles where rolname = 'aduserdb@AD';
+GO
+select count(*) from pg_roles where rolname = 'aduserdbenglish@AD';
+GO
+select count(*) from pg_roles where rolname = 'userpassword';
+GO
+select count(*) from pg_roles where rolname = 'duplicate@BABEL';
+GO
+select count(*) from pg_roles where rolname = 'duplicatedefaultdb@BABEL';
+GO
+select count(*) from pg_roles where rolname = 'كلب@BABEL';
+GO
+select count(*) from pg_roles where rolname = 'өглөө@BABEL';
+GO
+select count(*) from pg_roles where rolname = 'ελπίδα@BABEL';
+GO
+select count(*) from pg_roles where rolname = '爱@BABEL';
+GO
\ No newline at end of file
diff --git a/test/JDBC/jdbc_schedule b/test/JDBC/jdbc_schedule
index 98d163f437..a0fb445be7 100644
--- a/test/JDBC/jdbc_schedule
+++ b/test/JDBC/jdbc_schedule
@@ -483,6 +483,10 @@ ignore#!#declare_atatglobalvars_upgrade-before-16_5-vu-cleanup
 ignore#!#declare_atatglobalvars_upgrade-before-16_5-vu-prepare
 ignore#!#declare_atatglobalvars_upgrade-before-16_5-vu-verify
 
+ignore#!#test_windows_login_before-17_2-vu-prepare
+ignore#!#test_windows_login_before-17_2-vu-verify
+ignore#!#test_windows_login_before-17_2-vu-cleanup
+
 ignore#!#trim-before-15_11-or-16_7-vu-prepare
 ignore#!#trim-before-15_11-or-16_7-vu-verify
 ignore#!#trim-before-15_11-or-16_7-vu-cleanup
diff --git a/test/JDBC/upgrade/16_1/schedule b/test/JDBC/upgrade/16_1/schedule
index bf87af0aa7..fe137d6bcc 100644
--- a/test/JDBC/upgrade/16_1/schedule
+++ b/test/JDBC/upgrade/16_1/schedule
@@ -459,7 +459,7 @@ TestVarChar
 TestVariableDataLength
 test_windows_alter_login
 test_windows_alter_user
-test_windows_login
+test_windows_login_before-17_2
 test_windows_sp_helpuser
 TestXML
 timefromparts
diff --git a/test/JDBC/upgrade/16_2/schedule b/test/JDBC/upgrade/16_2/schedule
index 6d87fb2cb2..9146d21f14 100644
--- a/test/JDBC/upgrade/16_2/schedule
+++ b/test/JDBC/upgrade/16_2/schedule
@@ -463,7 +463,7 @@ TestVarChar
 TestVariableDataLength
 test_windows_alter_login
 test_windows_alter_user
-test_windows_login
+test_windows_login_before-17_2
 test_windows_sp_helpuser
 TestXML
 timefromparts
diff --git a/test/JDBC/upgrade/16_3/schedule b/test/JDBC/upgrade/16_3/schedule
index 19ee170fbc..594f59dbd2 100644
--- a/test/JDBC/upgrade/16_3/schedule
+++ b/test/JDBC/upgrade/16_3/schedule
@@ -464,7 +464,7 @@ TestVarChar
 TestVariableDataLength
 test_windows_alter_login
 test_windows_alter_user
-test_windows_login
+test_windows_login_before-17_2
 test_windows_sp_helpuser
 TestXML
 timefromparts
diff --git a/test/JDBC/upgrade/16_4/schedule b/test/JDBC/upgrade/16_4/schedule
index a7d35b1e86..89b4a3e035 100644
--- a/test/JDBC/upgrade/16_4/schedule
+++ b/test/JDBC/upgrade/16_4/schedule
@@ -466,7 +466,7 @@ TestVarChar
 TestVariableDataLength
 test_windows_alter_login
 test_windows_alter_user
-test_windows_login
+test_windows_login_before-17_2
 test_windows_sp_helpuser
 TestXML
 timefromparts
diff --git a/test/JDBC/upgrade/16_6/schedule b/test/JDBC/upgrade/16_6/schedule
index 947d144619..0edcadb4a2 100644
--- a/test/JDBC/upgrade/16_6/schedule
+++ b/test/JDBC/upgrade/16_6/schedule
@@ -467,7 +467,7 @@ TestVarChar
 TestVariableDataLength
 test_windows_alter_login
 test_windows_alter_user
-test_windows_login
+test_windows_login_before-17_2
 test_windows_sp_helpuser
 TestXML
 timefromparts
diff --git a/test/JDBC/upgrade/16_7/schedule b/test/JDBC/upgrade/16_7/schedule
index bb42e71821..434e019a5e 100644
--- a/test/JDBC/upgrade/16_7/schedule
+++ b/test/JDBC/upgrade/16_7/schedule
@@ -466,7 +466,7 @@ TestVarChar
 TestVariableDataLength
 test_windows_alter_login
 test_windows_alter_user
-test_windows_login
+test_windows_login_before-17_2
 test_windows_sp_helpuser
 TestXML
 timefromparts
diff --git a/test/JDBC/upgrade/17_2/schedule b/test/JDBC/upgrade/17_2/schedule
index 0a275f7e1c..00d32ea699 100644
--- a/test/JDBC/upgrade/17_2/schedule
+++ b/test/JDBC/upgrade/17_2/schedule
@@ -464,7 +464,7 @@ TestVarChar
 TestVariableDataLength
 test_windows_alter_login
 test_windows_alter_user
-test_windows_login
+test_windows_login_before-17_2
 test_windows_sp_helpuser
 TestXML
 timefromparts