Presentation is loading. Please wait.

Presentation is loading. Please wait.

2. SQL Security Objectives –Learn SQL Server 2000 components Contents –Understanding the Authentication Process –Understanding the Authorization Process.

Published byEvelyn Moore Modified over 8 years ago

Similar presentations

Presentation on theme: "2. SQL Security Objectives –Learn SQL Server 2000 components Contents –Understanding the Authentication Process –Understanding the Authorization Process."— Presentation transcript:

1 2. SQL Security Objectives –Learn SQL Server 2000 components Contents –Understanding the Authentication Process –Understanding the Authorization Process –Creating and Managing Logins –Users rights –Roles –SQL versus Windows users Practicals –Adding/Manipulating and Deleting logins Summary SQL

2 Understanding the Authentication Process Windows Authentication SQL Server Authentication Client Net-Libraries and Authentication –You access the SQL Server Client Network Utility from the Microsoft SQL Server program group on the Start menu.

3 Selecting a SQL Server 2000 Authentication Mode During installation, you selected an authentication mode for your SQL Server 2000 instance. The default mode is Windows Authentication Mode You can also choose to operate a SQL Server 2000 instance in Mixed Mode. Switching Authentication Modes –After installation, you must use SQL Server Enterprise Manager to switch authentication modes

4 Understanding the Authorization Process Server-Wide Permissions –predefined server roles with associated administration permissions –To grant a user these permissions, you add their login to the server role. Server Roles in SQL Server 2000 SysadminServeradminSetupadmin SecurityadminProcessadminDbcreator Diskadminbulkadmin A member of any server role can add other users to that serverrole.

5 Database-Specific Permissions Permissions can be granted, denied, or revoked The right to create objects, administer the database, Execute certain Transact-SQL statements, insert data to a table, or simply view data within a view. Database-Specific Permissions Database ownerDBO roleUserGuest user Public roleFixed database roleUser-defined database role Statement permissionsObject permissions Application role

6 Fixed Database Roles Each database contains nine predefined database roles with associated database-wide permissions to perform various tasks. To grant a user these permissions within a database, you add the user's database user account to the database role. you can create user-defined database roles with custom rights Database roles db_ownerdb_accessadmindb_securityadmindb_ddladmin db_backupoperatordb_datareaderdb_datawriter db_denydatareaderdb_denydatawriter

7 Creating and Managing Logins Granting Access Using SQL Server Enterprise Manager Using the Create Login Wizard Granting Access Using Transact-SQL Statements –Server login for Joe –Would add Joe with password 123456 to database Northwind, with default rights Sp_addlogin ’Joe’, ’123456’, ’Northwind’

8 Sample Creating logins Login Wizard To create a login using the Create Login Wizard 1. Ensure that you are logged on as Administrator. 2. Click Start, point to Programs, point to Microsoft SQL Server, and then click Enterprise Manager. 3. In the console tree, expand the Microsoft SQL Servers container, expand the SQL Server Group container, and then click the default instance. 4. On the Tools menu, click Wizards. The Select Wizard dialog box appears. 5. Expand Database and then double-click Create Login Wizard. The Welcome To The Create Login Wizard page appears. 6. Click Next. 7. Click the SQL Server Login Information That Was Assigned To Me By The System Administrator (SQL Server Authentication) option button and then click Next. 8. In the Login ID text box, type Joe. 9. In the Password and Confirm Password text boxes, type password and then click Next. 10. Click Next. Do not select any security roles. 11. Select the Northwind check box to permit access to this database only, and then click Next. 12. Click the Finish button.

9 Creating a Login Directly 1.right-click Logins in the Security container for the SQL Server 2000 instance 2.click New Login You have two choices: –Using Windows login, Click on dotted button next to User Browse user from list –Using SQL login, C Click on SQL Server Authentication Enter name and Password for SQL user 3. Select the default database, The default database will be the current database when a user logs in.

10 Viewing/edit Access Information Using SQL Server Enterprise Manager –Security -> Logins –Security -> Server Roles (double click on role) –+ -> Users (double click on a user) –+ -> Roles (double click on role) Using Transact-SQL –As usal, everything you can do with wizards and management consoles can be done within SQL scripts, for example: –Would return information regarding all logins or a specified login gus –Su_helplogins belong to the default System Stored Procedures Su_helplogins ’gus’

Download ppt "2. SQL Security Objectives –Learn SQL Server 2000 components Contents –Understanding the Authentication Process –Understanding the Authorization Process."

Similar presentations

MySQL Installation Guide. MySQL Downloading MySQL Installer.

MySQL Installation Guide. MySQL Downloading MySQL Installer.
Stored procedures and views You can see definitions for stored procedures and views in the demo databases but you can’t change them. For views, expand.

Stored procedures and views You can see definitions for stored procedures and views in the demo databases but you can’t change them. For views, expand.
Chapter 9 Chapter 9: Managing Groups, Folders, Files, and Object Security.

Chapter 9 Chapter 9: Managing Groups, Folders, Files, and Object Security.
10.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.

10.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
Hands-On Microsoft Windows Server 2003 Administration Chapter 5 Administering File Resources.

Hands-On Microsoft Windows Server 2003 Administration Chapter 5 Administering File Resources.
Administering Active Directory

Administering Active Directory
Lesson 19 – ADMINISTERING WINDOWS 2000 SERVER : THE BASICS.

Lesson 19 – ADMINISTERING WINDOWS 2000 SERVER : THE BASICS.
Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.

Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 4 Profiles, Password Policies, Privileges, and Roles.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 4 Profiles, Password Policies, Privileges, and Roles.
5. SQL Restore tasks Objectives –Learn howto recover databases from disaster Contents –View database and transaction log backup files –Perform a complete.

5. SQL Restore tasks Objectives –Learn howto recover databases from disaster Contents –View database and transaction log backup files –Perform a complete.
Chapter 10 Overview  Implement Microsoft Windows Authentication Mode and Mixed Mode  Assign login accounts to database user accounts and roles  Assign.

Chapter 10 Overview  Implement Microsoft Windows Authentication Mode and Mixed Mode  Assign login accounts to database user accounts and roles  Assign.
5. SQL Restore tasks Objectives –Learn howto recover databases from disaster Contents –View database and transaction log backup files –Perform a complete.

5. SQL Restore tasks Objectives –Learn howto recover databases from disaster Contents –View database and transaction log backup files –Perform a complete.
Ch 9 Managing Active Directory User Accounts. Objectives Create Organizational Unit Creating User Accounts in Active Directory Disabling, Enabling, and.

Ch 9 Managing Active Directory User Accounts. Objectives Create Organizational Unit Creating User Accounts in Active Directory Disabling, Enabling, and.
Installing a New Windows Server 2008 Domain Controller in a New Windows Server 2008 R2.

Installing a New Windows Server 2008 Domain Controller in a New Windows Server 2008 R2.
1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.

1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.
Configuring Active Directory Certificate Services Lesson 13.

Configuring Active Directory Certificate Services Lesson 13.
1 of 5 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.

1 of 5 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.
Overview What is SQL Server? Creating databases Administration Security Backup.

Overview What is SQL Server? Creating databases Administration Security Backup.
Ch 8-3 Working with domains and Active Directory.

Ch 8-3 Working with domains and Active Directory.
Working with Drivers and Printers Lesson 6. Skills Matrix Technology SkillObjective DomainObjective # Understanding Drivers and Devices Install and configure.

Working with Drivers and Printers Lesson 6. Skills Matrix Technology SkillObjective DomainObjective # Understanding Drivers and Devices Install and configure.

Similar presentations

Ads by Google