I would like to use Windows Authentication for SQL Server 2005. I'm just no
w
trying to determine how this will work in our environment. Here are some of
my requirements.
- A given users may have different right in the each environment
(Development, QA, and production.
- A user will gain access to sql server via ione or more Domain Groups
- Do not want to change security permissions on a database when migrating it
from one environment to another.
So my real problem is how can a single windows account (user) have different
rights on say database ABC for each environment and meet the above
requirements.
Ok let's say our user is named "domain\user1" and they need to following
access in each environment:
Select, insert, update, and delete permissions on table ABC.dbo.MyTable in
development.
Select, update permissions on table ABC.dbo.MyTable in QA
Select only permissions on table ABC.dbo.MyTable in Production.
So my questions is how do I define one or more windows group that
"domain\user1" would be a member so when I assign the windows group to a SQL
and grant them access to a database that the access changes depending on the
environment for which the database is being accessed?
If you are looking for SQL Server examples check out my Website at
http://www.geocities.com/sqlserverexamplesLet me add that the development environment has a separate domain, but the Q
A
and production environment have the same domain.
--
If you are looking for SQL Server examples check out my Website at
http://www.geocities.com/sqlserverexamples
"Greg Larsen" wrote:
> I would like to use Windows Authentication for SQL Server 2005. I'm just
now
> trying to determine how this will work in our environment. Here are some
of
> my requirements.
> - A given users may have different right in the each environment
> (Development, QA, and production.
> - A user will gain access to sql server via ione or more Domain Groups
> - Do not want to change security permissions on a database when migrating
it
> from one environment to another.
> So my real problem is how can a single windows account (user) have differe
nt
> rights on say database ABC for each environment and meet the above
> requirements.
> Ok let's say our user is named "domain\user1" and they need to following
> access in each environment:
> Select, insert, update, and delete permissions on table ABC.dbo.MyTable in
> development.
> Select, update permissions on table ABC.dbo.MyTable in QA
> Select only permissions on table ABC.dbo.MyTable in Production.
> So my questions is how do I define one or more windows group that
> "domain\user1" would be a member so when I assign the windows group to a S
QL
> and grant them access to a database that the access changes depending on t
he
> environment for which the database is being accessed?
> If you are looking for SQL Server examples check out my Website at
> http://www.geocities.com/sqlserverexamples
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment