Re: Changing credentials on-the-fly

From: Tom Moreau (tom_at_dont.spam.me.cips.ca)
Date: 09/26/05 

Date: Mon, 26 Sep 2005 09:35:12 -0400

Consider using an application role. They can login as themselves and then
set the application role. The role stays in effect until logout. You may
have issues with connection pooling, however. 

-- 
    Tom
----------------------------------------------------
Thomas A. Moreau, BSc, PhD, MCSE, MCDBA
SQL Server MVP
Columnist, SQL Server Professional
Toronto, ON   Canada
www.pinpub.com
"Promenade" <promenade@no.com> wrote in message 
news:OwhJb2pwFHA.2656@TK2MSFTNGP09.phx.gbl...
> Hi!
> I have a late requirement from de Security Department.
> This is the situation: the apps must connect to SQL Server 2000 through 
> OLE
> DB using a generic user, but the developers will not know its credentials
> (at least the password)
> Unfortunatelly, like I said, this is a late requirement because there are
> many apps already working, obviously knowing the credentials.
> I spent so much time thinking a way to solve this problem without
> codification, finally I arrived to this idea, but I don't know if it's
> achievable.
> - Create a new user in SQL Server and grant the right permissions on the
> addecuate DBs
> - Deny permissions to the old user
> - Leave the apps just how they are now
> - When an app attempt to open a connection, SQL Server must modify the old
> credentials with the new ones...
>
> Is this possible?
> And obviously....how???
> Otherwise, do you know another solution (without reprogramming)?
>
> Thanks in advance,
> Promenade
>
> PS: I apologize my english
>
>

Relevant Pages

  • Changing credentials on-the-fly
    ... the apps must connect to SQL Server 2000 through OLE ... but the developers will not know its credentials ... Deny permissions to the old user ...
    (microsoft.public.sqlserver.security)
  • Re: A lot of lockings and connections to SQL Server. Is it normal or bad?
    ... probably not closing a connection in your application somewhere. ... Pro SQL Server 2000 Database Design - ... > massively attack the system with all the apps feature (purchasing, ... >> locks are fine, as long as you don't have lots of users contending for ...
    (microsoft.public.sqlserver.programming)
  • Re: eternal lock?
    ... Restarting the apps doesn't solve the problem, ... To wit, if a query times out, and there is a transaction in progress, ... query batch, or started within the query batch that timed out. ... Erland Sommarskog, SQL Server MVP, esquel@xxxxxxxxxxxxx ...
    (comp.databases.ms-sqlserver)
  • Re: Remote Database Connection with PocketPC/MSAccess Front End
    ... SQL Server which Windows Mobile devices can access directly remotely) is ... including the Access Sync Services that your question isn't about. ... I develop MS Access Apps for my clients. ... I also checked out MS SQL server 2005 Express & Compact Edition. ...
    (microsoft.public.pocketpc.developer)
  • Re: PLEASE HELP: Problem with security
    ... How do I make sure ASPNET has access to SQL Server? ... ASPNET full access rights to the directory I am running out of. ... So the only way I can get the apps to work is move them ... >> the inetpub wwwroot directory. ...
    (microsoft.public.dotnet.framework.aspnet.security)