Home > Archive > MS SQL Server security > November 2005 > RE: Anonymous or Everyone access on a workgroup using integrated secur









You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

 

Author RE: Anonymous or Everyone access on a workgroup using integrated secur
Andy Davis

2005-11-28, 7:23 am

Hi,
are you talking about SQL and ASP ?
if its not that please read below linked article very care fully :

http://vyaskn.tripod.com/ sql_serve...t_practices.htm
http://www.sql-server-performance.c..._sql_server.asp

HTH
Regards
--
Andy Davis
Activecrypt Team
--------------------------------------------
SQL Server Encryption Software
http://www.activecrypt.com



"cjm" wrote:

> Is it possible to allow "everyone" to have access to a SQL Server
> database on a workgroup (using integrated security and when accounts DO
> NOT match up between workstations and the server)?
>
> We have a multi-user product which currently uses a file based back
> end, and we have a lot of users with workgroups. We want to move to a
> SQL Server back end, but security is being a real issue since many of
> our users are not able to properly configure their workgroup to be able
> to use integrated security correctly.
>
> The file based access works fine on these unconfigured workgroups even
> when users do not match up between the workstations and the server
> because the file sharing can let everyone in even when there is no
> matching local account. So, on the one hand we want to provide the
> same "everyone" access for these users wo do not want the complexity of
> correctly locking things down. On the other hand our big active
> directory users want to be able to lock down and control access via
> user groups.
>
> So we would like to use integrated security to make our big customers
> happy, but still be able to have wide open access for the small users
> that can't configure all that stuff. SQL authentication would let us
> do this (we could have one account used by everything), but we then
> have to support two authentication methods, and our big users have to
> go in and delete this account access to lock things down :/
>
> When I configured SQL server with "ANONYMOUS USER" access, it would not
> connect. When I configured it with "Everyone" I was able to connect if
> I had any matching local account, but if there was no matching local
> account I got back "Login failed for user: (null)".
>
> Do any of you have ideas what I might have been doing wrong with the
> everyone/anonymous access, or any ideas of how else I could accomplish
> this?
>
> Thanks,
> Christopher
>
>
Sponsored Links





Also available: Server administration forum archive | Web Design forum archive | Software forum archive | Hardware reviews archive | Programming forum archive

Copyright 2008 droptable.com