Tuesday, March 20, 2012

Row level and column level permissions.

Dear All,
Any recommendations on best practices for implementing row level and column
level permissions in an SQL server database. I did some googling and i could
find some recommendations for implementing row level permissions.(I am awar
e that Yukon is going to ha
ve this feature built-in, am using SQL 2k). All of them were seemed to be sp
ecific to applications.
Regarding column level security what concerns me is that, i want this to be
applicable for my reporting tool(either crystal or sql reporting services).
Thanks in advance.
regards
ArunYou could use roles and have different views based on the columns you want
each role to see?
Aaron Bertrand
SQL Server MVP
http://www.aspfaq.com/
"Arun" <ar_kumar@.hotmail.com> wrote in message
news:0C4D56B1-7357-45D1-8EF4-FAE3E8FD5A29@.microsoft.com...
> Dear All,
> Any recommendations on best practices for implementing row level and
column level permissions in an SQL server database. I did some googling and
i could find some recommendations for implementing row level permissions.(I
am aware that Yukon is going to have this feature built-in, am using SQL
2k). All of them were seemed to be specific to applications.
> Regarding column level security what concerns me is that, i want this to
be applicable for my reporting tool(either crystal or sql reporting
services).
> Thanks in advance.
> regards
> Arun|||Hi i did consider this option, i am worried if i have too many users and too
many roles?|||Maybe the problem is the number of columns? I can understand how you can
have a lot of users, but why would you need a lot of different roles unless
you have 18 billion columns and need a role for every single permutation?
Aaron Bertrand
SQL Server MVP
http://www.aspfaq.com/
"Arun" <ar_kumar@.hotmail.com> wrote in message
news:0618401B-03CB-422A-9EBF-1309E459D21D@.microsoft.com...
> Hi i did consider this option, i am worried if i have too many users and
too many roles?|||Hi
Thanks for your reply.I am not considering direct sql statements to come fro
m anywhere. I meant all the access will be restricted using sp's. I have to
consider reporting also. where a report (crystal mostly) will read directly
from an sp to produce repor
ts. Do you have any links that tells about implementing column level permiss
ions.
Thanks in advance
regards
Arun
Posted by seatsdfv at 2:46 AM
Labels: , , , , , , , , , , , , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)