Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
MarkusS
Starting Member
5 Posts |
 Posted - 2008-05-23 : 06:21:35
|
| Hi Folks,I have the following Problem: ( not simular to http://www.sqlteam.com/forums/topic.asp?TOPIC_ID=101916 )In one Table ( Objects ) exists an Id to my internal Security Tables, where the combination of many Features together results in, which Data the user could see.Today, i use only one SQL Account and the Security ist solved in my Application, In an SP is a where Clause generated, every SQL Statement is extended whitch this where clause.This work fine, but everyone with SQL User and PW could see everything this the Query Analyser or Management Studio.The perfect solition could be:Several Usergroups should have Access to my DB.Only a few Views / SP where execuable for these Usergroups.The Application calls alway the same View / SP an depending on the Login the Data ist filtered in the right way.Is ist possible to filter a view with dynamic SQL ?2.nd Question:Is it possible to restrict Users / roles depending on the Network IP Address / Network Mask ?The Security Problem only exists, when Users with VPN are connecting, internal Users always have full access.Thanks an greeting from Germany,Markus |
|
|
rmiao
Master Smack Fu Yak Hacker
7266 Posts |
Posted - 2008-05-23 : 23:23:28
|
| 1. you may need add logical in sp to find out sql login then filter data for it.2. you can only grant permission to user, maybe create special sql login for vpn connection. |
 |
|
|
|
|
|
Row Level Security