Dear All,
We use NTAuthorisation. The other day we had the auditors in the other who
pointed out a problem where although security has been implelemented data ca
n
still be accessed but using a different application i.e. word excel ect
rather than our VB App.
What is the best way of changing this so that SQL will only accept
connections from a particuar application (i.e. our vb application)
TIAI suggest you check out "application roles" in Books Online.
Tibor Karaszi, SQL Server MVP
http://www.karaszi.com/sqlserver/default.asp
http://www.solidqualitylearning.com/
"Patricia" <Patricia@.discussions.microsoft.com> wrote in message
news:68B94CD5-3C40-404A-A236-40E1BF7ACD02@.microsoft.com...
> Dear All,
> We use NTAuthorisation. The other day we had the auditors in the other who
> pointed out a problem where although security has been implelemented data
can
> still be accessed but using a different application i.e. word excel ect
> rather than our VB App.
> What is the best way of changing this so that SQL will only accept
> connections from a particuar application (i.e. our vb application)
> TIA|||Did you think about a application role ?
http://www.sqlteam.com/item.asp?ItemID=864
HTH, Jens Smeyer.
http://www.sqlserver2005.de
--
"Patricia" <Patricia@.discussions.microsoft.com> schrieb im Newsbeitrag
news:68B94CD5-3C40-404A-A236-40E1BF7ACD02@.microsoft.com...
> Dear All,
> We use NTAuthorisation. The other day we had the auditors in the other who
> pointed out a problem where although security has been implelemented data
> can
> still be accessed but using a different application i.e. word excel ect
> rather than our VB App.
> What is the best way of changing this so that SQL will only accept
> connections from a particuar application (i.e. our vb application)
> TIA|||AFAIK, you can limit on that using Application Roles. You can take a look at
the Application roles on BOL under the title "Establishing Application
Security and Application Roles".
HTH,
Vinod Kumar
MCSE, DBA, MCAD, MCSD
http://www.extremeexperts.com
Books Online for SQL Server SP3 at
http://www.microsoft.com/sql/techin.../2000/books.asp
"Patricia" <Patricia@.discussions.microsoft.com> wrote in message
news:68B94CD5-3C40-404A-A236-40E1BF7ACD02@.microsoft.com...
> Dear All,
> We use NTAuthorisation. The other day we had the auditors in the other who
> pointed out a problem where although security has been implelemented data
can
> still be accessed but using a different application i.e. word excel ect
> rather than our VB App.
> What is the best way of changing this so that SQL will only accept
> connections from a particuar application (i.e. our vb application)
> TIA
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment