Our software requires the business users (of the software) to have read and write access to the database (MS SQL Server). The users are added to an active directory group with this SQL permission. The business users also want to query the database as read only in SQL Server Management Studio. Is there a way that the user can have read write access to the database from the software and read only from the back end in SQL Server Management studio?
Asked
Active
Viewed 445 times
0
-
1Stack Overflow is really only for programming questions. This question is a better fit for [Server Fault](https://serverfault.com). That said, the answer is no. Permissions are assigned to credentials, regardless of how you access the database. Usually applications use only one account to access the database, then limit what data is shown based on the user logged in. It's not common for an application to use the user's account to access the database. – Gabriel Luci Jan 21 '22 at 18:31
-
see https://stackoverflow.com/questions/5029014/how-to-add-active-directory-user-group-as-login-in-sql-server – Meysam Asadi Jan 21 '22 at 18:33
1 Answers
0
As the SQL server permissions are assigned to the Active Directory group, the users in the group will be able to have the same permissions irrespective of from where they are accessing the database (from the software or MS SQL server management studio)
The permissions cannot be changed based on from where the users are accessing the database
RamaraoAdapa
- 2,837
- 2
- 5
- 11