Netherlands: Software

Introductie van Micorosoft SQL Server 2016

Issue link: http://hub-nl.insight.com/i/692679

Contents of this Issue

Navigation

Page 176 of 212

164 C H A P T E R 8 | Improved Azure SQL Database Configuring security SQL Database security is similar in practice to SQL Server security. Some features in SQL Database, such as firewall administration and auditing, correspond to features in SQL Server but are implemented differently within the Azure infrastructure. Firewall administration By default, the SQL Database firewall blocks access to all connections. After creating your SQL Database, you can use the Azure Management Portal to specify which IP addresses can connect to your database. In the SQL Database blade, click the server name to open the server blade, and then click the Show Firewall Settings link to open the Firewall Settings blade and define firewall rules at the server level, as shown in Figure 8-3. To define rules for each database individually, use the sp_set_firewall_rule stored procedure. Note If you use SQL Database to host data for a software-as-a-service (SaaS) application, you should implement firewall rules at the database level. You can also programmatically manage firewall settings with T-SQL, REST API, or Azure PowerShell. By using software-defined networking, you can fully automate your application deployment and quickly add new IP addresses. For more information, see "How to: Configure firewalls settings on SQL Database using TSQL" at https://azure.microsoft.com/en-us/documentation/articles/sql- database-configure-firewall-settings-tsql/, which includes links to the other methods. Figure 8-3: Configuring a firewall for SQL Database in Azure Management Portal. Notice that you also have the option to select a check box on the Firewall Settings page in the portal to permit other Azure services in your subscription to access your database. Be aware that enabling this setting opens your database to all Azure services. As a security best practice, you should open your database only to the specific IP addresses that require access. (You can find a list of Azure Compute IP addresses at http://www.microsoft.com/en-us/download/details.aspx?id=41653.) Note SQL Database supports communication on TCP port 1433 only. Authentication SQL Database currently supports only SQL Server authentication. As one of the steps you perform when you create a SQL Database, you are prompted to create a login that becomes the server-level

Articles in this issue

Links on this page

Archives of this issue

view archives of Netherlands: Software - Introductie van Micorosoft SQL Server 2016