Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
amanhabt
Starting Member
4 Posts |
 Posted - 2011-08-19 : 08:27:20
|
| hey guyz;am working with sql server 2008 as backend for different application... and linked with Ms-Access/epi-info as a front end...some users exporting some tables from Ms-accesss application ...Is there any ways to know who is exporting tables from sql server db...any help Pls....! |
|
|
TG
Master Smack Fu Yak Hacker
6065 Posts |
Posted - 2011-08-19 : 14:03:17
|
| If you provide users direct access to your tables then no you can't.Be One with the OptimizerTG |
 |
|
|
amanhabt
Starting Member
4 Posts |
Posted - 2011-08-22 : 02:15:16
|
| I only gave read access to users...but I don't wanna give the raw data....any help.... |
|
|
|
TG
Master Smack Fu Yak Hacker
6065 Posts |
Posted - 2011-08-22 : 14:51:09
|
| Can you explain the difference between "read access" to the tables and "the raw data"? Because by using MSAccess with read access to a table the user basically now can have their own copy of that table.Typically people will create a view or stored procedure which will limit the data to only what the admin wants the user to see. Then revoke table permissions and just grant exec on the SP or select on the view. But if your view is defined as "select <all columns> from <yourTable>" then that in affect is no different then granting read access to the table.Be One with the OptimizerTG |
|
|
|
amanhabt
Starting Member
4 Posts |
Posted - 2011-08-23 : 02:24:24
|
| Thank you Guyz;what I wanna give to users is just to query the tables...but I don't wanna my tables to be exported to excel or other application...users need to do the analysis on their pc...or if they export the tables...Is there anyways to capture who's exporting the tables...Thanks again ! |
|
|
|
TG
Master Smack Fu Yak Hacker
6065 Posts |
Posted - 2011-08-23 : 10:35:25
|
| My original answer still stands.If you grant direct read access of your sql tables to users then there is nothing preventing them from SELECTing all the table data into their own application and/or tables. And I know of no way you can tell which user(s) have done that.If you need to limit access or at least know who has selected what then you will need to put a tier between the users and the database tables. data security is a huge topic. If you are serious about protecting your data you need to read up on various methodologies and decide which best works for your scenario.Be One with the OptimizerTG |
|
|
|
amanhabt
Starting Member
4 Posts |
Posted - 2011-09-01 : 04:26:03
|
| Thanks TG!I just wanna know if it's possible to follow Users when they export tables....I will enforce audit...though it didn't catch export event...thanks again ! |
|
|
|
|
|
|
SQL server Audit