We have a vb.net 2005 application with a SQL Server 2005 Backend
SQL Authentication is used to authenticate users.
We need to change the application to allow application administrator's to create users using the front end interface.
We have a store procedure that creates the logins, no problem there, the problem is that the account that the application uses needs to be on the Server role 'securityadmin" otherwise, will not run.
There is a concern that the application account has elevated privileges on the server and can access other DBs.
Is there a way to create logins but restrict the user that the application uses to create the login to only one database?
Any idea is very welcome