Tuesday, March 20, 2012

Row level and column level permissions.

Dear All,
Any recommendations on best practices for implementing row level and column level permissions in an SQL server database. I did some googling and i could find some recommendations for implementing row level permissions.(I am aware that Yukon is going to ha
ve this feature built-in, am using SQL 2k). All of them were seemed to be specific to applications.
Regarding column level security what concerns me is that, i want this to be applicable for my reporting tool(either crystal or sql reporting services).
Thanks in advance.
regards
Arun
You could use roles and have different views based on the columns you want
each role to see?
Aaron Bertrand
SQL Server MVP
http://www.aspfaq.com/
"Arun" <ar_kumar@.hotmail.com> wrote in message
news:0C4D56B1-7357-45D1-8EF4-FAE3E8FD5A29@.microsoft.com...
> Dear All,
> Any recommendations on best practices for implementing row level and
column level permissions in an SQL server database. I did some googling and
i could find some recommendations for implementing row level permissions.(I
am aware that Yukon is going to have this feature built-in, am using SQL
2k). All of them were seemed to be specific to applications.
> Regarding column level security what concerns me is that, i want this to
be applicable for my reporting tool(either crystal or sql reporting
services).
> Thanks in advance.
> regards
> Arun
|||Hi i did consider this option, i am worried if i have too many users and too many roles?
|||Maybe the problem is the number of columns? I can understand how you can
have a lot of users, but why would you need a lot of different roles unless
you have 18 billion columns and need a role for every single permutation?
Aaron Bertrand
SQL Server MVP
http://www.aspfaq.com/
"Arun" <ar_kumar@.hotmail.com> wrote in message
news:0618401B-03CB-422A-9EBF-1309E459D21D@.microsoft.com...
> Hi i did consider this option, i am worried if i have too many users and
too many roles?
|||Hi
Thanks for your reply.I am not considering direct sql statements to come from anywhere. I meant all the access will be restricted using sp's. I have to consider reporting also. where a report (crystal mostly) will read directly from an sp to produce repor
ts. Do you have any links that tells about implementing column level permissions.
Thanks in advance
regards
Arun
Posted by seatsdfv at 2:47 AM
Labels: , , , , , , , , , , , , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)