Presentation is loading. Please wait.

Presentation is loading. Please wait.

SQL Server Security By Mattias Lind 2015-08-20 For PASS Security VC.

Published byJeffrey Stone Modified over 9 years ago

Similar presentations

Presentation on theme: "SQL Server Security By Mattias Lind 2015-08-20 For PASS Security VC."— Presentation transcript:

1 SQL Server Security By Mattias Lind (@SoQooL) 2015-08-20 For PASS Security VC

2 Mattias Lind Senior Microsoft Data Platform & Business Intelligence Architect @Sogeti mattias.lind@sogeti.se MVP on SQL Server Microsoft Certified Trainer blog.mssqlserver.se sqlguru.se @SoQooL

3 Today’s Content Authentication SQL Server Logins & Windows Authentication Server Roles Database Users & Roles Partial Contained Databases NTLM vs. Kerberos

4 Authentication Validate connection Make sure right users consume Server level Database level

5 SQL Server Logins & Windows Authentication SQL Server Login Name Password Exists in the local instance Authenticated by SQL Server Windows User or Group Reference by SID Exists in AD or SAM Approved by SQL Server Connect To Server

6 Server Roles Delegates specific administrative control of the server Set of server fixed Custom server roles

7 Database Users & Roles Database Users approves access to a database A SQL Server Login are tied to a User Can be based on a Windows User or Group Database Roles groups permissions and are associated to Users A Role is not a group, it’s a Permission Set Application Roles have a password and can elevate permissions for the session

8 Partial Contained Databases Uses a Partial Contained Database User with a password Inherits permission to connect to server, no need for a Login Configurables are Server, Database, and Database User

9 NTLM vs. Kerberos NTLM is “old school” vs. Kerberos as “new school” Windows Server 2000 Active Directory Client SAM Server SAM Service

10 NTLM vs. Kerberos Client SAM Server SAM Service Domain

11 Thank You! @SoQooL @SoQooL

Download ppt "SQL Server Security By Mattias Lind 2015-08-20 For PASS Security VC."

Similar presentations

Login dan Permission dfd, 2012. Jenis Login dfd, 2012 SQL Server Authentication Membutuhkan password Windows Authentication Mode Tidak membutuhkan password.

Login dan Permission dfd, Jenis Login dfd, 2012 SQL Server Authentication Membutuhkan password Windows Authentication Mode Tidak membutuhkan password.
Kevin Donovan Program Manager, Office BI Microsoft Corporation

Kevin Donovan Program Manager, Office BI Microsoft Corporation
Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.

Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.
SharePoint 2010 Business Productivity: What's new for Developers in Microsoft SharePoint 2010 Matthew McDermott, MVP Aptillon, Able Blue

SharePoint 2010 Business Productivity: What's new for Developers in Microsoft SharePoint 2010 Matthew McDermott, MVP Aptillon, Able Blue
1 1. SQL SERVER OVERVIEW zWhat Is SQL Server? zInterfaces To Use SQL Server zSQL Server Services zTypes Of Databases zSQL Server Security.

1 1. SQL SERVER OVERVIEW zWhat Is SQL Server? zInterfaces To Use SQL Server zSQL Server Services zTypes Of Databases zSQL Server Security.
ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.

ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.
Enterprise Single Sign On Identity management for web applications.

Enterprise Single Sign On Identity management for web applications.
Understanding Active Directory

Understanding Active Directory
Ing. Ondřej Ševeček | GOPAS a.s. | MCM: Directory Services | MVP: Enterprise Security | | |

Ing. Ondřej Ševeček | GOPAS a.s. | MCM: Directory Services | MVP: Enterprise Security | | |
Windows Security Mechanisms Al Bento - University of Baltimore.

Windows Security Mechanisms Al Bento - University of Baltimore.
Edwin Sarmiento Microsoft MVP – Windows Server System Senior Systems Engineer/Database Administrator Fujitsu Asia Pte Ltd

Edwin Sarmiento Microsoft MVP – Windows Server System Senior Systems Engineer/Database Administrator Fujitsu Asia Pte Ltd
(ITI310) SESSIONS 9-10-11-12: Active Directory By Eng. BASSEM ALSAID.

(ITI310) SESSIONS : Active Directory By Eng. BASSEM ALSAID.
Chapter 8 Hardening Your SQL Server Instance. Hardening  Hardening The process of making your SQL Server Instance more secure  New features Policy based.

Chapter 8 Hardening Your SQL Server Instance. Hardening  Hardening The process of making your SQL Server Instance more secure  New features Policy based.
Understanding Integrated Authentication in IIS Chris Adams IIS Supportability Lead Microsoft Corp.

Understanding Integrated Authentication in IIS Chris Adams IIS Supportability Lead Microsoft Corp.
© 2011 PLANET TECHNOLOGIES, INC. Augmenting User Profiles with Line of Business Data Patrick Curran, MCT APRIL 28, 2012.

© 2011 PLANET TECHNOLOGIES, INC. Augmenting User Profiles with Line of Business Data Patrick Curran, MCT APRIL 28, 2012.
Copyright 2007, Information Builders. Slide 1 WebFOCUS Authentication Mark Nesson, Vashti Ragoonath Information Builders Summit 2008 User Conference June.

Copyright 2007, Information Builders. Slide 1 WebFOCUS Authentication Mark Nesson, Vashti Ragoonath Information Builders Summit 2008 User Conference June.
Chapter 4 Windows NT/2000 Overview. NT Concepts  Domains –A group of one or more NT machines that share an authentication database (SAM) –Single sign-on.

Chapter 4 Windows NT/2000 Overview. NT Concepts  Domains –A group of one or more NT machines that share an authentication database (SAM) –Single sign-on.
© 2011 PLANET TECHNOLOGIES, INC. Extending User Profiles with Line of Business Data Patrick Curran, MCT FEBRUARY 24, 2013.

© 2011 PLANET TECHNOLOGIES, INC. Extending User Profiles with Line of Business Data Patrick Curran, MCT FEBRUARY 24, 2013.
Module 10: Configuring Windows XP Professional to Operate in Microsoft Networks.

Module 10: Configuring Windows XP Professional to Operate in Microsoft Networks.
Overview AdministrationEmployeeCustomerWaiting Screen.

Overview AdministrationEmployeeCustomerWaiting Screen.

Similar presentations

Ads by Google