Largest number of users you have accomodated? - SQL Server Forums

Home | Weblogs | Forums

Site Sponsored By: SQLDSC - SQL Server Desired State Configuration

Please start any new threads on our new site at https://forums.sqlteam.com. We've got lots of great SQL Server experts to answer whatever question you can come up with.

All Forums

General SQL Server Forums

Database Design and Application Architecture

Largest number of users you have accomodated?

Author

Topic

blindman
Master Smack Fu Yak Hacker

2365 Posts

Posted - 2008-07-28 : 09:47:57

What is the largest number of users you have had on a single database?
What is the largest number of users you have accomodated using individual SQL Server authentications?
What is the largest number of users you have accomodated using individual Windows Authentication logins?
Have you ever "rolled you own" application security within a database, and how many users did you accommodate?
What were the administrative problems you experienced using any of these alternatives?

e4 d5 xd5 Nf6

blindman
Master Smack Fu Yak Hacker

2365 Posts

Posted - 2008-07-29 : 01:15:06

Aw, c'mon guys and gals. Isn't it bad enough that more forum is down without getting the silent treatment here?

e4 d5 xd5 Nf6

tkizer
Almighty SQL Goddess

38200 Posts

Posted - 2008-07-29 : 01:23:22

1. I think we are at 8,000 now (I hate this system especially when we move to the DR site)
2. 8,000 (Moving this many users to the DR site sucks)
3. Very few as we use SQL authentication due to firewall/DMZ/...
4. Yes, thousands
5. Moving SQL accounts between instances takes too long regardless of which method you use. Here's my method though: http://weblogs.sqlteam.com/tarad/archive/2008/06/24/How-to-transfer-SQL-logins-between-SQL-Server-2005-instances.aspx

We usually use application authentication for the users and SQL authentication for the application. Anyone needing direct access to the database goes in via Windows authentication. SQL authentication for a user is done only in legacy systems.

Tara Kizer
Microsoft MVP for Windows Server System - SQL Server
http://weblogs.sqlteam.com/tarad/

Subscribe to my blog

spirit1
Cybernetic Yak Master

11752 Posts

Posted - 2008-07-29 : 04:49:06

we have aroud 1000 users in our own login table that hadles security for the apps.
each app uses it's own sql auth to connect to sql server, there are around 6 apps.
this way moving logins isn't a problem at all.
direct db access is also done with win auth.

_______________________________________________
Causing trouble since 1980
Blog: http://weblogs.sqlteam.com/mladenp
Speed up SSMS development: www.ssmstoolspack.com <- version 1.0 out!

blindman
Master Smack Fu Yak Hacker

2365 Posts

Posted - 2008-07-29 : 09:39:19

Excellent!

I'm thinking of a web-based app, so Windows authentication for users would not be possible.

I've rolled my own row-level security before in an EDI database. Each user logged in with a password and received a temporary token (GUID) once the password was validated. Thereafter, this token was passed as a parameter to every procedure, which verified that the token was valid and up-to-date before processing the request.
It worked, but it was clunky having to pass and verify the token in every procedure, and it seems superfluous if I can give each user their own SQL Server login and manage those effectively. I've just never managed hundreds or thousands of SQL Server logins so I have no idea what kind of drawback there might be.

e4 d5 xd5 Nf6

LoztInSpace
Aged Yak Warrior

940 Posts

Posted - 2008-07-31 : 10:25:15

>1 million users via several (around 100) service accounts for various web apps. One database supports all the user profiles and large chunks of web content. Once you're in then you are in so I've never done the per-enquiry thing. Never done the row level stuff at the user level, it has always been restricted to various functions via roles in the app.

Subscribe to SQLTeam.com

SQLTeam.com Articles via RSS

SQLTeam.com Weblog via RSS

- Advertisement -

Resources