August 17, 2006 at 9:37 am
Hi All,
My company uses 3rd party software for our business operations. As part of our database security we are planning to put security in place. This application use windows integrated security to connect to database through ODBC. All the users are part of 'domain user'. This domain user group has given db_datawriter,db_datareader, Execute permission on our production db. our 3rd party application fire both ad hoc sql and stored procedures to database. Hence any domain user group member can connect to the database and play with data. We don’t want to allow any other application to connect the production database and make changes. I believe using application role we can solve the problem, but how can I activate the application role for a 3rd party product. Unfortunately we don't have access to the 3rd party applications source code. Is there any other way to sole this?
Unfortunately we don’t want to use SQL authentication.
Thanks
ba
August 17, 2006 at 11:41 am
Does the application use Integrated to connect ot the database or the application uses Integrated to login to the application and then uses a hardcoded login name and password to login to the database? It is easy to check looking at the Current Activity Window, Processes view.
You can not use Application Role outside the application or SQL code code, contact the vendor, see if they have role-enabled version of their product
Regards,Yelena Varsha
Viewing 2 posts - 1 through 1 (of 1 total)
You must be logged in to reply to this topic. Login to reply