[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 551
  • Last Modified:

SQL 2008 authentication: safe to change from Windows to mixed mode ?

I have been asked to use an existing SQL 2008 server for a new database for a new client-server app. Currently, SQL authentication on this SQL server is Windows and it is being used for a production line-of-business app. However, the new app requires mixed mode authentication. I know how to change from Windows to mixed authentication. However, is it safe to do this? Are there likely to be any implications for the original app?
0
askrabbit
Asked:
askrabbit
  • 3
  • 3
1 Solution
 
Guy Hengel [angelIII / a3]Billing EngineerCommented:
there is no implications for the original app.
the implication is only security for the database, as all the non-windows logins will be able to be used.
you may consider installing a dedicated instance for this app, if it's a small one ...
0
 
askrabbitAuthor Commented:
Is it possible to create an sa-type SQL login which only has superuser rights on the new database? Would this be easier than giving the implementation team for the new app the sa credentials?
0
 
Guy Hengel [angelIII / a3]Billing EngineerCommented:
logins with sa power (sysadmin server role) have permissions on all databases.
you can create a normal login with no special server roles and make it db_owner (full power) on that database, the login will not be able to do anything on the other databases.
0
Veeam and MySQL: How to Perform Backup & Recovery

MySQL and the MariaDB variant are among the most used databases in Linux environments, and many critical applications support their data on them. Watch this recorded webinar to find out how Veeam Backup & Replication allows you to get consistent backups of MySQL databases.

 
askrabbitAuthor Commented:
Re normal login with no special server roles, making it db_owner - OK.

Re "all the non-windows logins will be able to be used" - if the new app implementation team had neither the sa credentials nor a Windows account with admin rights over SQL, would this be an issue?
0
 
Guy Hengel [angelIII / a3]Billing EngineerCommented:
no
0
 
askrabbitAuthor Commented:
Thanks for your speedy responses!
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now