Re: Grant access to applications only
- From: ulrich schumacher <ulrichschumacher@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 27 May 2008 06:18:01 -0700
The data access should not be restricted so that already existing
applications can be switched to the new login method as easy as possible.
"Uri Dimant" wrote:
Hi.
My aim is to remove all passwords from the client but also prevent users
from manipulating data.
Use Windows Authentication and GRANT an EXECUTE permission on stored
proceduers that read the data only
"ulrich schumacher" <ulrichschumacher@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in
message news:514A122C-96EE-4926-9D92-75251218820C@xxxxxxxxxxxxxxxx
Hi Uri,
thanks for your post!
My aim is to remove all passwords from the client but also prevent users
from manipulating data.
Maybe a central web service that provides the login data (via SSL) after
identifying the client assembly by its signature would be a solution.
Best regards
Ulrich
"Uri Dimant" wrote:
Hi
Create Windows/SQL Login dedicated to application and grant all
appropriate
permissions to the Login
"ulrich schumacher" <ulrichschumacher@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in
message news:8C26EF26-CC8C-4907-8E13-0F380A059394@xxxxxxxxxxxxxxxx
Hi all!
Is there a way to allow a .net application write access to sql server
but
to
deny a direct user login e.g. via management studio.
The background is that the users must not be able to manipulate the
data
directly but only within the application. Integrated security should be
used
as authentication type.
Thanks in advance
Ulrich
- References:
- Re: Grant access to applications only
- From: Uri Dimant
- Re: Grant access to applications only
- From: ulrich schumacher
- Re: Grant access to applications only
- From: Uri Dimant
- Re: Grant access to applications only
- Prev by Date: Re: Grant access to applications only
- Next by Date: Encryption Best Practices
- Previous by thread: Re: Grant access to applications only
- Next by thread: Re: Grant access to applications only
- Index(es):
Relevant Pages
|
