Creating application roles in Sql server | SQL Server Performance Forums

SQL Server Performance Forum – Threads Archive

Creating application roles in Sql server

We have SQL 2000 as well 2005, what are the primery things needs to be done ? & how is the strong securities we can apply on this servers. Thanks in adv. Raj
Others may disagree with me, but based on my personal experience, application roles aren’t the best way to control security for an application. It requires that you not only create an application role, but a login ID for the application. Also, the password of the application role has to be embedded in your application, which sometimes can be problematic. I avoid application roles and use SQL Server or Windows Authentication instead, the are much easier, from my point of view, to work with. ——————————–
Brad M. McGehee, SQL Server MVP
http://www.sqlbrad.com
Agree with Brad in the case of Application roles, as they are not handy in all the cases. http://sqlserver-qa.net/blogs/ha/archive/2007/04/04/security-best-practices-sql-server.aspx on the security best practices. Satya SKJ
Microsoft SQL Server MVP
Writer, Contributing Editor & Moderator
http://www.SQL-Server-Performance.Com
This posting is provided AS IS with no rights for the sake of knowledge sharing. The greatest discovery of my generation is that a human being can alter his life by altering his attitudes of mind.
]]>