Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
rookie07
Starting Member
2 Posts |
 Posted - 2008-06-26 : 07:20:27
|
| hello there,i'm new to sql server and just finished migrating a ms access database to a sqlserver. i want to be able to manipulate the database over the internet, that is why i've installed the web data administrator on the wk3 server where the database is running. in future it might be possible that i would store sensible data in this database, therefore i want to secure the things up.this means when i'm calling the webadmin-interface over the inet i want to use a ssl-connection in order to encrypt information which i've typed in before. the thing is the setup wizzard of the web data admin created an virtual directory in the iis - can i force the iis or the sql server 2005 (express edition) to use an ssl-connection?can i configure the sql server in the way that after a log in the user only can see a specific table (system tables/databases should be invisible)?can you give me any hint?or perhaps there is a better web-user-interface than the web data administrator somewhere out there for free?thank you very much!!! |
|
|
maninder
Posting Yak Master
100 Posts |
Posted - 2008-06-26 : 12:42:17
|
| http://searchwindowssecurity.techtarget.com/tip/0,289483,sid45_gci1049026,00.htmlManinder |
 |
|
|
rookie07
Starting Member
2 Posts |
Posted - 2008-06-27 : 03:56:07
|
| thank you for your response.the thing is, i allready found this hint, originally this was how all this startet.i did get that far as, i was able to create a new user on the wk3 machine which has the privileges of a comon user. then i startet the sql server managment studio and createt under the security a new login concerning that user, also he has only got sufficient rights tu manipulate just one table...the thing is, this user also can see the system-databases and manipulate it. how do i prevent the user to manipulate systemdatabases?also i do have to solve the ssl-theme on the iis...thank you! |
|
|
|
maninder
Posting Yak Master
100 Posts |
Posted - 2008-06-27 : 15:40:42
|
| Reduce his Priviliges.if the user is a SA, he will be see everything.Work around his priviliges.check out public permissions.( only if you want to deny to all users)Maninder |
|
|
|
|
|
|
|
|
secure up web data administrator