Re: Securing a SQL Server Database

---

• From: "Arnie Rowland" <arnie@xxxxxxxx>
• Date: Mon, 18 Dec 2006 09:28:24 -0800

---

As others have indicated, you cannot block out the server administrator. You
can, however, encrypt the data to make it unreadable.

Have you considered looking at Application Roles? (See Books Online.)

--
Arnie Rowland, Ph.D.
Westwood Consulting, Inc

Most good judgment comes from experience.
Most experience comes from bad judgment.
- Anonymous

You can't help someone get up a hill without getting a little closer to the
top yourself.
- H. Norman Schwarzkopf


"Greg" <AccessVBAnet@xxxxxxxxxxxxxxxxx> wrote in message
news:0758BE75-1A5A-4FB5-922C-D5D4AA436225@xxxxxxxxxxxxxxxx

I have a SQL Server 2005 database that is used by an Access ADP program.
What
I'd like to do with my SQL Server 2005 database is secure it with a
UserName
and Password that is only known to my program. Any other use who logs in
to
SQL Server, even the SA User, should not be able to access the database.
Right now, my Access database looks for a secret built in UserName and
Password to connect to the database and then I handle the application
security with my own modules.

My concern is that I don't want any other Access ADP application or
someone
with the SQL Management Studio with an SA Account to be able to access the
database. In other words, the database would only be accessible from my
ADP
Application is it can provide the username and password.

I also want the security to be in such a manner that if the database was
copied, it could not be opened at another machine unless they had the
proper
username and password. I know how to do this with MS Access and am new to
SQL
Server security and could use some help with figuring this out.

How is this done with SQL Server?

And, lastly, how can I create a UserName and Password SQL Account from my
ADP Database application if I need to?

Thanks in advance for your assistance.

Greg

.

---

• Prev by Date: Re: User Termination
• Next by Date: ASP Impersonation - null user
• Previous by thread: RE: Securing a SQL Server Database
• Next by thread: Re: SQL 2000 securing records...
• Index(es):
  • Date
  • Thread

---

Relevant Pages RE: WSS install locked into MSDE DB - Can not install for SQL Serv ... For the MASTER database ... Althought we change the Configuration Application pool several times ... interface BUT they appear to be MSDE databases and not SQL Server databases. ... (microsoft.public.sharepoint.windowsservices) Re: How to Replicate an SQL Server 2000 Database ... actual server name) enterprise manager should associate the database with the ... Looking for a SQL Server replication book? ... (microsoft.public.sqlserver.replication) Re: SQL 2005 Best Practice vs SQL 2000: Application Files Separate from data (and log) files ... I have had quite a number of clients that used a SAN for a database server and suffered significant performance problems because their underlying SAN infrastructure was a huge stripe across many drives. ... By application files I mean the binn folder which contains the sql server executable among other things. ... (microsoft.public.sqlserver.setup) Re: FCB::RemoveAlternateStreams: Operating system error (null) ... Thanks for all your help Ekrem, even if your sugestion does not solve the ... in this edition of SQL Server the ... database so it's opened again and you get this error somehow. ... (microsoft.public.sqlserver.setup) Re: SQL Server 2005 Express Remote connection ... I have also deleted the login for Fred from the list of users for my ... So Fred no longer exists as a login or as a user in the SQL Server setup. ... the database? ... (microsoft.public.sqlserver.server)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.sqlserver.security  > 2006-12