SQL Server Security: Authentication, Authorization, and AppFrame Security

October 1-2 Ølensvåg

Session Code: SQL-201-Security Speaker(s): Jekaterina Golouchova AppFrame SQL – Security

SQL Server Security • Authentication • Authorization • AppFrame Security • Domains • Master Groups and Groups • Table Views – atbv/atbx • Triggers • sstp_Database_Maintenance_ApplyPermissions Agenda:

Database • User • Roles • db_owner • db_accessadmin • db_securityadmin • af_User • Server • Login • SQL Server Authentication • Windows Authentication • Roles • sysadmin • securityadmin SQL Server Security

AppFrame Security

CREATEVIEW [dbo].[atbv_CRM_ClientsPositions] AS SELECT* FROMatbl_CRM_ClientsPositions WITH (NOLOCK) WHEREEXISTS(SELECT* FROMdbo.sviw_System_MyPermissionsCurrentDomain WITH (NOLOCK) WHEREDomain =atbl_CRM_ClientsPositions.Domain ANDTableID ='atbl_CRM_ClientsPositions') Table Views – atbv/atbx CREATEVIEW [dbo].[atbx_CRM_ClientsPositions] AS SELECT* FROMatbl_CRM_ClientsPositions WITH (NOLOCK) WHEREEXISTS(SELECT* FROMdbo.sviw_System_MyPermissionsWITH (NOLOCK) WHEREDomain =atbl_CRM_ClientsPositions.Domain ANDTableID ='atbl_CRM_ClientsPositions')

Triggers

Apply Permissions

SQL Server Security: Authentication, Authorization, and AppFrame Security