Re: Active Directory, IIS, and Application Roles...

• Previous message: Marlon Brown: "Re: Does changing to "Windows auth only" affects all the db on the server, right ?"
• In reply to: rich: "Active Directory, IIS, and Application Roles..."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 14 Dec 2004 09:46:55 +0200

rich
Can you specify in CONNECTION string of the application to which database to
connect?

Application Roles is very useful when the certain user for example has not
an access to the table (update/insert ) but he needs to update/insert new
Orders so by using AppRole you may allow him to get the access to the
table.
You will have to activate the Role immediatly after connection string.

"rich" <rich@discussions.microsoft.com> wrote in message
news:EAB3367F-81F7-4D38-85F5-6938284864F0@microsoft.com...
> I am creating an ASP.NET application that runs on a server with Windows
2003,
> Active Directory, SQL Server 2000 (SP3), and IIS. Traditionally I have
used
> trusted connections and database roles for application access to SQL
Server.
> However, my MS Access users now inherently have access to all the stored
> procedures that my application uses (including deletes). Not good. I
have
> never used SQL Server Application Roles and wonder if that's the direction
to
> head. Or is there a better way? What I really need is a way to tell SQL
> Server that only certain application(s) (maybe by name) have access to a
> particular database.
>
> 1) If I use Application Roles can SQL still capture the trusted accounts
> used for SQL Logins? Any other auditing still possible?
>
> 2) Any issues to consider using Application Roles with IIS apps?
>
> Thank you for any insights!

• Previous message: Marlon Brown: "Re: Does changing to "Windows auth only" affects all the db on the server, right ?"
• In reply to: rich: "Active Directory, IIS, and Application Roles..."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]