Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
BitShift
Yak Posting Veteran
98 Posts |
 Posted - 2007-05-18 : 11:35:22
|
| Ive been reading over the documentation and some stuff online, but I still dont really understand what the difference is and when you would use one vs the other. Can someone put it in simple terms for this dummy (me) ?thanks |
|
|
rmiao
Master Smack Fu Yak Hacker
7266 Posts |
Posted - 2007-05-18 : 11:46:23
|
| Application role is for accessing db from specific application only, users in that role can't access db from outside of the app. db roles have no such restriction. |
 |
|
|
mcrowley
Aged Yak Warrior
771 Posts |
Posted - 2007-05-18 : 11:49:04
|
| A regular role is a way to group users by function. Think of it as a Windows group. It saves you from having to keep permissions in synch for several users. An Application Role is a way to keep other applications from having the same permissions as another. Suppose you have a powewr user that happens to know the username and password a particular application uses to connect to the database. This user then fires up Microsoft Access, and starts poking through the database. This is acceptable in some places, but not many. All it takes is one delete, and you have a database restore looming in front of you. Or more likely unknown orphan data. If the application used an Application Role, then the power user would not have the same permissions, since he would (hopefully) not know the application role's password.Better, now? |
|
|
|
|
|
|
Sql 2005 database role vs application role ?