2012年2月19日星期日

Disable the use of Enterprise Manager

I have created a new DB user, ABC, for using ASP.NET application to
connecting to SQL Server. Does it means this ABC user can logon in the
Enterprise Manager to view the data without using the web application' if
so, is there any way to block this ABC user from viewing data in Enterprise
Manager?> I have created a new DB user, ABC, for using ASP.NET application to
> connecting to SQL Server. Does it means this ABC user can logon in the
> Enterprise Manager to view the data without using the web application'
Yes.
> if
> so, is there any way to block this ABC user from viewing data in Enterprise
> Manager?
No. I suggest you use stored procedures and only allow your users to execute the stored procedures.
You might also want to read about application roles...
--
Tibor Karaszi, SQL Server MVP
http://www.karaszi.com/sqlserver/default.asp
http://www.solidqualitylearning.com/
"Grey" <erickwyum@.i-cable.com> wrote in message news:eMZrdqsnEHA.1160@.tk2msftngp13.phx.gbl...
> I have created a new DB user, ABC, for using ASP.NET application to
> connecting to SQL Server. Does it means this ABC user can logon in the
> Enterprise Manager to view the data without using the web application' if
> so, is there any way to block this ABC user from viewing data in Enterprise
> Manager?
>|||TO add to Tibor's comments, if you really, really want that capability, use
Application roles. They allow you to give permission when access is via the
application, but the end user does NOT have a permissions, so he can not go
through SEM or query analyzer and see anything.
--
Wayne Snyder, MCDBA, SQL Server MVP
Mariner, Charlotte, NC
www.mariner-usa.com
(Please respond only to the newsgroups.)
I support the Professional Association of SQL Server (PASS) and it's
community of SQL Server professionals.
www.sqlpass.org
"Grey" <erickwyum@.i-cable.com> wrote in message
news:eMZrdqsnEHA.1160@.tk2msftngp13.phx.gbl...
> I have created a new DB user, ABC, for using ASP.NET application to
> connecting to SQL Server. Does it means this ABC user can logon in the
> Enterprise Manager to view the data without using the web application' if
> so, is there any way to block this ABC user from viewing data in
Enterprise
> Manager?
>
发帖者 insis 时间: 01:25
标签: , , , , , , , , , , , , , , , , ,

没有评论:

发表评论

订阅: 博文评论 (Atom)