Implementing row-level security

How do you implement data/row-level security in SQL Server 7.0 or 2000? I have a data warehouse with data from various organizations. I want to restrict organization data based on the users logging into the SQL Server database via Crystal Enterprise 9.0 and Crystal Report Designer 9.0.

Requires Free Membership to View

Login

By submitting you agree to receive email communications from
TechTarget and its partners. Privacy Policy Terms of Use.

There is no way to do so with built in SQL Server security. You can implement this functionality yourself. To do this, you would need the combination of views, a table of users/groups, and the suser_sname() function. Essentially, you set up your tables where you include a column to contain the group ID of a set of users, which you create. You then create a view over the top of your base tables which combine your base table with a security table on the security group ID. This view utilizes the suser_sname() function to pass the ID of the user logging in as part of the where clause in the view. This will restrict access to rows of data based on your custom security requirements. This requires that users login with their own credentials and not generic accounts.

For More Information

Dozens more answers to tough SQL Server questions from Michael Hotek are available here.
The Best Microsoft SQL Server Web Links: tips, tutorials, scripts, and more.
The Best SQL Web Links
Have a SQL Server tip to offer your fellow DBAs and developers? The best tips submitted will receive a cool prize. Submit your tip today!
Ask your technical SQL Server questions -- or help out your peers by answering them -- in our live discussion forums.
Ask the Experts yourself: Our SQL, database design, SQL Server, DB2, object-oriented and data warehousing gurus are waiting to answer your toughest questions.

More News and Tutorials

Articles

Related glossary terms

Terms for Whatis.com - the technology online dictionary
- SQL (Structured Query Language)
- SQL Server 2012

This was first published in September 2003

Join the conversationComment

Share

Comments

Results

Contribute to the conversation

All fields are required. Comments will appear at the bottom of the article.

Back to top

More from Related TechTarget Sites

Business Analytics
Data Center
Data Management
Data Management UK
Oracle
Content Management
Windows Server

Business Analytics
- Match in-memory processing speed to big data analytics business need
  
  Michael Minelli, co-author of a book on big data analytics, says in-memory analytics tools must be tied to business processes to pay off for users.
- MIT panelists: Big data calls for data-driven decision making skills
  
  C-level execs need to develop better decision making skills to capitalize on big data technology, said speakers at the 2013 MIT Sloan CIO Symposium.
- In-memory analytics tools pack potential big data punch
  
  The faster analytics performance spurred by in-memory technology can help companies capitalize on big data, but there are barriers to be aware of.
Data Center
- Data center modernization starts with cloud, SDN and virtualization
  
  Some of the technologies driving data center modernization include cloud computing, flash storage, virtualization and software-defined networking.
- Data center technologies evolve to meet tomorrow's computing demands
  
  VMware's upcoming public cloud and AMD's 64-bit ARM servers are technologies for the data center that exemplify the changes in the IT industry.
- New data center cooling strategies to improve efficiency, lower costs
  
  Stagnant strategies for data center cooling will keep energy bills climbing ever higher, but a more modern approach can bring them back down to earth.
Data Management
- New BI stack tackles data load at Boston Children's Hospital
  
  Boston Children's Hospital upgraded its business intelligence architecture to boost enterprise reporting, a move that also required retraining users.
- Expanded Hadoop use cases will drive need for new enterprise features
  
  With user interest rising, Hadoop vendors are trying to pave a path to higher adoption with add-ons that target issues holding the technology back.
- Jim Goodnight on SAS in-memory analytics and the data scientist
  
  A podcast Q&A with SAS execs Jim Goodnight and Jim Davis looks at big data enablers, including in-memory analytics, and the role of data scientists.
DataManagement UK
- Big data roundtable webcast: gaining value from big data
  
  Roundtable discussion on business value of big data, chaired by Brian McKenna, Editor, SearchDataManagementUK, and featuring Mike Ferguson, Roxane Edjlali (Gartner), Joshua LeCure (GlaxoSmithKline).
- 2012 training courses: BI, data management, data warehousing
  
  Find out where to hone your business intelligence, data management and data warehouse skills with this list of training courses for 2012.
- Poor data quality: what is dirty data costing UK organisations?
  
  Poor data quality can have serious financial consequences for businesses. Read about the current state of data quality management at UK companies, including dirty data problems.
Oracle
- Script writing rules for Oracle Hyperion Financial Management
  
  Accountants hate having to play with scripts. In this tip, TopDown Consulting explains how to build script rules so that accountants don't have to.
- Domain-specific Oracle master data management
  
  Oracle master data management products are starting to merge various data management hubs, which is a help in particular vertical industries.
- Privileged user management a must for DBAs
  
  Trust, but verify. Ronald Reagan made it popular, and it's certainly relevant for DBAs in today's consolidated, virtualized IT world.
Content Management
- IT leaders can learn from users' concerns about Tumblr-Yahoo deal
  
  Users of the Tumblr blogging site worry about what will happen to their content after Yahoo's acquisition, and IT execs can learn from the situation.
- Get 'em ready: Tips for planning a SharePoint 2013 training program
  
  SharePoint is a complex application. But training business users for an upgrade to SharePoint 2013 doesn't have to be a daunting task for IT teams.
- The organization of the future: Not just hybrid IT, but hybrid people
  
  The adoption of hybrid IT approaches creates a need for executives who can both formulate business objectives and assess IT requirements.
Windows Server
- Microsoft delivers patch updates for Windows Server 2012, Windows 8
  
  Microsoft delivered two critical and eight important bulletins in May's Patch Tuesday release, fixing issues in Windows Server 2012 and Office apps.
- Windows Azure Active Directory steps out of the shadows
  
  As Windows Azure Active Directory moves into general availability, we look at how it can help admins manage user authentication in the cloud.
- Steps to read XML files with PowerShell
  
  Wondering how to get PowerShell to read XML files? Our expert explains a few methods you could use.

All Rights Reserved,Copyright 2005 - 2013, TechTarget