Monday, March 12, 2012

Need advice on SQL Server account to use for my ASP.NET application

Hi,

I know it's bad to use the built-in SA account to access SQL Server from my ASP.NET application.

I did some reading but would like some suggestions as well. One article I read talked about Application roles in SQL Server. Is this the best way to handle SQL Server access for read/write/update/delete privileges from an ASP.NET application?

If this is the way to go, how do I set it up? Can anyone suggest a good web site to read up on this?Yes look at the Microsoft Patterns and Practices Site..."Building Secure Microsoft ASP.NET Applications"

No comments:

Post a Comment