| Subject | RE: [IB-Architect] Re: SQL names for user and role |
|---|---|
| Author | Leyne, Sean |
| Post date | 2001-04-25T20:15:36Z |
Larry,
Could you expand on the role of Directory Services for SQL Server?
I don't know anything about the DS model and how it might extend to
tables/object within a SQL DBMS, and I suspect I'm not alone.
Thanks
Sean
-----Original Message-----
From: Larry Carter [mailto:lcarter_97132@...]
Sent: Wednesday, April 25, 2001 4:09 PM
To: IB-Architect@yahoogroups.com
Subject: Re: [IB-Architect] Re: SQL names for user and role
I have been following this thread somewhat and wanted
to throw out a small idea. If this has already been
discussed in the past then forgive me for the wasted
bandwidth.
I don't know what the SQL92/99 spec says, but what
about Directory Services capabilities as a security
level option for Firebird? Base LDAP would probably
be sufficient I would think. This would give users
the option of DB Server level security or DS based
security. Most of the ROLES aspects etc. wouldn't
have to change since we don't neccessarily have to
extend the schema just use it for base authentication
(i.e. OS user level).
I am fairly new to Directory Services with M$ ADS
where I have started but they are way cool. We use
ADS for our authentication to MS SQL Server and I
would never go back to DB level security again.
Just a though.
Larry
Could you expand on the role of Directory Services for SQL Server?
I don't know anything about the DS model and how it might extend to
tables/object within a SQL DBMS, and I suspect I'm not alone.
Thanks
Sean
-----Original Message-----
From: Larry Carter [mailto:lcarter_97132@...]
Sent: Wednesday, April 25, 2001 4:09 PM
To: IB-Architect@yahoogroups.com
Subject: Re: [IB-Architect] Re: SQL names for user and role
I have been following this thread somewhat and wanted
to throw out a small idea. If this has already been
discussed in the past then forgive me for the wasted
bandwidth.
I don't know what the SQL92/99 spec says, but what
about Directory Services capabilities as a security
level option for Firebird? Base LDAP would probably
be sufficient I would think. This would give users
the option of DB Server level security or DS based
security. Most of the ROLES aspects etc. wouldn't
have to change since we don't neccessarily have to
extend the schema just use it for base authentication
(i.e. OS user level).
I am fairly new to Directory Services with M$ ADS
where I have started but they are way cool. We use
ADS for our authentication to MS SQL Server and I
would never go back to DB level security again.
Just a though.
Larry