Re: SQL 2000 and Enterprise Manager

From: Andrew J. Kelly (akelly@targitinteractive.com)
Date: 05/20/02

• Next message: Steve Thompson: "Re: Service Account access fails"
• Previous message: Orion Culver: "Service Account access fails"
• In reply to: Ernest DeVore: "Re: SQL 2000 and Enterprise Manager"
• Next in thread: Ernest DeVore: "Re: SQL 2000 and Enterprise Manager"
• Reply: Ernest DeVore: "Re: SQL 2000 and Enterprise Manager"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "Andrew J. Kelly" <akelly@targitinteractive.com>
Date: Mon, 20 May 2002 15:42:45 -0400

Not sure I understand what you mean by that. Typically how you would use
this is to have the application itself run the sp sp_setapprole as one of
the first things it does. Once this is done the entire connection will only
have the permissions of the app role. So you limit their NT account to be
virtually permission free so they effectively can't use the tools but when
they run the application it will automatically run the sp_setapprole sp.
Maybe this will help:
http://support.microsoft.com/search/preview.aspx?scid=kb;en-us;Q243053

--
Andrew J. Kelly   SQL MVP
Targitinteractive, Inc.
"Ernest DeVore" <devore_ernest@hotmail.com> wrote in message
news:epLZ1pCACHA.2500@tkmsftngp05...
>
> "Andrew J. Kelly" <akelly@targitinteractive.com> wrote in message
> news:#GbjWNCACHA.940@tkmsftngp05...
> > Take a look at application roles in booksonline.
>
> Well, this is exactly what I was looking for, but unfortunately it's
> crippled for my usage. I run integrated security with no standard logins.
> Many of SQL 2000's cool new features (application roles, linked servers,
> etc.) are difficult if not impossible for me to implement.
>
> Still, I'd recommend this as a little bit of extra security for anyone
still
> in standard security.
>
> Thanks for the pointer, Andrew.
>
> Ernie
>
>
>

---

• Next message: Steve Thompson: "Re: Service Account access fails"
• Previous message: Orion Culver: "Service Account access fails"
• In reply to: Ernest DeVore: "Re: SQL 2000 and Enterprise Manager"
• Next in thread: Ernest DeVore: "Re: SQL 2000 and Enterprise Manager"
• Reply: Ernest DeVore: "Re: SQL 2000 and Enterprise Manager"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages IIS Integrated security ... I have a problem with Integrated security and IIS. ... I have one webserver with several sites, each one of them have thier own dns ... Both run woth integrated security on, and all other security, like anonymous ... (microsoft.public.inetserver.iis.security) Re: Login failed for user NT AUTHORITYANONYMOUS LOGON. ... Accessing SQL Server with Integrated Security from ASP ... Authentication Methods for Connections to SQL Server in Active Server Pages ... > should make sure the domain account is not locked out. ... (microsoft.public.inetserver.iis.security) Re: Integrated Security carries a lot of extra bytes when accessing ASP Web Pages ... If re-authentication means that it truly knows what type of security you are ... With Windows authentication you also might end ... >> I desire to use the Integrated Security, but not at the extra cost. ... (microsoft.public.inetserver.iis.security) RE: Need help making SQL Server authenticate an AD user ... Is there a way to programtically prompt the Integrated ... security to come up and check against AD? ... (microsoft.public.sqlserver.security) Re: Passwords retrievable via SQLDMO ... And since it is in the HEKY_CURREN_USER you need to login in with the NT ... are using standard security. ... Or you can always use integrated security, ... Please reply only to the newsgroups. ... (microsoft.public.sqlserver.security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.sqlserver.security  > 2002-05