SQL Server 2005 security settings

I don't have much experience with authentication.

I want to use windows auth to SQL SERVER 2005 database, so that the user can create temporary tables that are created and deleted by a client application process.

I don't want to grant them server wide roles, but I am using the User Mapping option to give them ALL roles on the actual database that the app is accessing.

My client app is still throwing up an error regarding not being allowed to create tables.

Do I have to alloacte server roles?

Any suggestions of best practice?

You have to grant 'create table' permission to db user or put user in db_ddladmin db role.