Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
psychotic_savage
Starting Member
25 Posts |
 Posted - 2011-02-09 : 09:09:46
|
| Hi All.I'm looking at allowing a login permission to run queries via code\applications but not to actually login to the SSMS and run queries from there. Is there a way of doing this?Or should I really be overhauling the entire security of our databases.All opinions are welcome.Thanks |
|
|
russell
Pyro-ma-ni-yak
5072 Posts |
Posted - 2011-02-09 : 10:44:32
|
| Once you allow access, it doesn't matter what application they use to connect, they can do whatever you've allowed.The key here is to lock down the permissions to only what the user(s) need.You could write a logon trigger, and use that to check the application name, then kill the process or something. |
 |
|
|
|
|
|
Customised Logins