September 12, 2005 at 9:56 am
Has anyone else observed this issue?
With me having db_owner authority on a specific database, and no server level authority; I can create users on that database that appear to be orphans. These users do not have a login at the server level because I have not authority at that level. These id's that I can add to the database are all os authentied user ids. These users also seem to have access to the database with what ever authority I created them with on that database. These id's do not appear to be part of any higher level nt group id.
September 13, 2005 at 8:50 am
Your SQL Server installation is installed with Mixed Mode Authentication. The IDs that you are creating in SQL Server exist in SQL Server only, and do not have any relation or authentication with Windows network services.
If you want to ensure that all users/connections to SQL Server are Windows Authenticated users (recommended), then you need to change yoir SQL Server Security mode to Windows Only Authentication. But be aware that will also disable the SA account (as that is a SQL Server account).
See in BOL: Administering SQL Server: Authentication Modes for more details.
Mark
Viewing 2 posts - 1 through 1 (of 1 total)
You must be logged in to reply to this topic. Login to reply