I have a requirement to ensure that our service accounts (that connect to SQL) are not used by anyone but the by the APPLICATION itself also excluding access via SSMS

Question

question

ripefica asked Nov 8, '18

I have a requirement to ensure that our service accounts (that connect to SQL) are not used by anyone but the by the APPLICATION itself also excluding access via SSMS

I have a requirement to ensure that our service accounts (that connect to SQL) are not used by anyone but the by the APPLICATION itself (also excluding access via SSMS)

security access

4

10 |1200

Attachments: Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

JohnM commented · Nov 18, 2018 at 10:51 PM

Ok, what's the question here?

0 ·

ripefica JohnM commented · Nov 19, 2018 at 02:26 PM

Hi John. I want to guarantee my SQL connections are only allowed from one source, in this case, from the application server. All other connections must be refused.

0 ·

KenJ commented · Nov 21, 2018 at 08:59 PM

Domain/windows service accounts or service accounts using sql logins?

0 ·

ripefica commented · Nov 21, 2018 at 09:03 PM

Hi @KenJ its Service Accounts using SQL Logins.

0 ·

Answer 1 · 2018-11-19T14:37:58Z

JohnM answered Nov 19, '18

I think that I'd do this at the network level as it'll probably be easy to manage. Secondly you could use windows Firewall to block any connections other than certain IP's. However, with that said, you're going to want to allow 1433 for any DBA's so that they can administer the instance.

10 |1200

Attachments: Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

question