Solved

SQL 2008 authentication: safe to change from Windows to mixed mode ?

Posted on 2013-01-14
6
538 Views
Last Modified: 2013-01-14
I have been asked to use an existing SQL 2008 server for a new database for a new client-server app. Currently, SQL authentication on this SQL server is Windows and it is being used for a production line-of-business app. However, the new app requires mixed mode authentication. I know how to change from Windows to mixed authentication. However, is it safe to do this? Are there likely to be any implications for the original app?
0
Comment
Question by:askrabbit
  • 3
  • 3
6 Comments
 
LVL 143

Accepted Solution

by:
Guy Hengel [angelIII / a3] earned 500 total points
ID: 38774008
there is no implications for the original app.
the implication is only security for the database, as all the non-windows logins will be able to be used.
you may consider installing a dedicated instance for this app, if it's a small one ...
0
 
LVL 2

Author Comment

by:askrabbit
ID: 38774063
Is it possible to create an sa-type SQL login which only has superuser rights on the new database? Would this be easier than giving the implementation team for the new app the sa credentials?
0
 
LVL 143

Expert Comment

by:Guy Hengel [angelIII / a3]
ID: 38774070
logins with sa power (sysadmin server role) have permissions on all databases.
you can create a normal login with no special server roles and make it db_owner (full power) on that database, the login will not be able to do anything on the other databases.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 2

Author Comment

by:askrabbit
ID: 38774089
Re normal login with no special server roles, making it db_owner - OK.

Re "all the non-windows logins will be able to be used" - if the new app implementation team had neither the sa credentials nor a Windows account with admin rights over SQL, would this be an issue?
0
 
LVL 143

Expert Comment

by:Guy Hengel [angelIII / a3]
ID: 38774199
no
0
 
LVL 2

Author Closing Comment

by:askrabbit
ID: 38774224
Thanks for your speedy responses!
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

You might have come across a situation when you have Exchange 2013 server in two different sites (Production and DR). After adding the Database copy in ECP console it displays Database copy status unknown for the DR exchange server. Issue is strange…
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question