Hello everyone,
Is there a way to deny a specific application from connecting to SQL Server? There is an application some of my developers use that connects with Windows Authentication that I would like to block from my production server. I can't deny the user's logins because they need to be able to connect to the server from other applications.
Does anyone have any suggestions?
Thanks in advance,
Jarret
Hi,
are you using SQL Server 2k or 2k5 ? You have to keep in mind that application names although they are provided automatically by applications can be spoofed easily by manipulating the connectionstring, so I don′t know if this solution would be feasible for you in this case.
HTH, jens Suessmeyer.
http://www.sqlserver2005.de
|||Sorry, I am using SQL Server 2005.
I understand that an application name can be manipulated, but even if the application name is spoofed, I would be able to include the new name in my list of applications to deny. This is a third party tool, so I don't think my developers will be able to modify the connection string very easily. However, if they do change the application name, I would like to be able to block it as well.
Thanks,
Jarret
|||Hi,there is no generic way, you will have to implement something like this AUDIT_LOGIN event triggering here:
http://www.sqlservercentral.com/columnists/FVandeputte/sqlserver2005logontriggers.asp
HTH, Jens Suessmeyer.
http://www.sqlserver2005.de
No comments:
Post a Comment