My application needs update permission to 2 databases. If I create an
application role in database 1, the app can access database 2 using
the application role only as guest, who then needs update permission.
My users can then log in as themselves using NT Authentication, and
have update permission to database 2 outside the application through
guest. This isn't good. Is there a way around this?
> Hello Jerry,
> I am currently using NT Groups with application roles, this is working
> just fine. The only problem that I have seen is that you are leaving the
> security of you database in the hands of your systems people.
> For instance, we are only using 3 groups, IT, Management, & Users. I
> have found that this doesn't provide enough security "options."
> Chuck Maracle
> > Hi,
> > I'm trying to create an application role to grant specific access to a
> > large set of NT users. Do I have to make each a login on the server
> > in order for the application to connect, or can I grant an application
> > role to an NT group?
> > Thanks,
> > Jerry Ratner