Managing application roles

Application roles allow users to access data on the SQL Server only when they log on and access it using the relevant application, but without allowing the users to directly access the raw data in the SQL database tables using other applications or tools such as SQL Server Management Studio.

An application role is created for SunSystems, and this must be made available to any client application that needs access to SunSystems data (such as a reporting tool). However, it can only be used by such a client if the user has already been authenticated by the security service, that is, using a user ID created in User Manager.

The application role itself is secured by means of a password. Users do not need to know this password, but a system administrator installing a new application must know the password if the application is to be allowed access to SunSystems data.

Note: You can only use this function if you have Administrator rights.
  1. From the menu select Settings > SunSystems > Manage Application Role.
  2. Specify this information:
    Application Role Name
    Enter a name for the application role. Application Role Names are case sensitive and it is recommended not to use reserved SQL Server terms, for example Create.
    Application Role Password
    Enter a password for the application role. Your password cannot begin with a number, and cannot include special characters such as ! ( ) , * : ; ? @ [ ] { }.
    Last Updated
    This is automatically populated with the date when the application role was last updated.
  3. Save your changes.