January 8, 2009 at 4:03 pm
If I have an application running on a machine as a service and I want that service to have access to a DB ....how do I handle that in security? Can I give that machine access? do I have to use standard SQL login?
January 9, 2009 at 8:51 am
You can add the Service NT Login to your SQL Server Login and give appropriate permission.
-Roy
January 9, 2009 at 9:30 am
ok that sounds easy but how. When I go to add a network service how do I find it? Since we are looking at a domain there is no machine on it just domain\JkSQL. I would need something like remotemachineetwork service. Is there a search technique I can use?
January 9, 2009 at 10:00 am
IF the service is running using the domain\JkSQL account then you add this account as a login to the SQL Server and then create a database user for that login within the desired databases.
CREATE LOGIN domain\JkSQL FROM WINDOWS;
GO
USE database_name;
CREATE USER JkSQL FOR LOGIN [domain\JkSQL];
GO
Jack Corbett
Consultant - Straight Path Solutions
Check out these links on how to get faster and more accurate answers:
Forum Etiquette: How to post data/code on a forum to get the best help
Need an Answer? Actually, No ... You Need a Question
January 9, 2009 at 10:47 am
Thanks Jack for completing my answer. I have to work on my answering skills. I always give the answer in a general form. Not specific to the question.
-Roy
January 9, 2009 at 11:10 am
Roy Ernest (1/9/2009)
Thanks Jack for completing my answer. I have to work on my answering skills. I always give the answer in a general form. Not specific to the question.
Sometimes I think I need to be more general. I just sew the OP's response and saw that they had misunderstood your answer so I figured I'd clarify.
Jack Corbett
Consultant - Straight Path Solutions
Check out these links on how to get faster and more accurate answers:
Forum Etiquette: How to post data/code on a forum to get the best help
Need an Answer? Actually, No ... You Need a Question
January 9, 2009 at 2:37 pm
If you're trying to add a machine account, it'll following the pattern domain\machinename$. So for a computer MyComputer in MyDomain:
MyDomain\MyComputer$
When you run an app under the Network Service account, such as the case with the default Identity for application pools in IIS, that's how it'll show up. You'll have to do this through the CREATE LOGIN T-SQL command, because the GUI doesn't handle this properly.
K. Brian Kelley
@kbriankelley
Viewing 7 posts - 1 through 6 (of 6 total)
You must be logged in to reply to this topic. Login to reply