You are viewing limited content. For full access, please sign in.

Question

Question

Laserfiche forms connecting to a new Data Source

Forms
Updated October 11, 2023
asked on October 11, 2023

Im having some issues connecting to a new data source.  I have a SQL account that i wanted to use to connect to a new source instead of using "domain\username".  testing my acocunt "domain\username" works (im an admin), however, i wanted to connect using a SQL account connecting to a new database, how can i make that possible?  Do i have to make that SQL account an admin in the new database that i'm trying to connect to?

0 0

Answer

SELECTED ANSWER
replied on October 11, 2023

You have to drop down to the next page "User Mapping" to choose the roles for a specific database instead of just granting sysadmin under Server Roles.

The roles you choose depend on what you want to allow. You can just choose the role db_datareader if you only need to lookup data. I would assume for lookup rules that db_datareader and db_datawriter is plenty since the user does not need to be managing the database, only working with the data inside of it.

 

1 0
replied on October 11, 2023

Seconding this. Definitely use these more limited database-level db_datareader and db_datawriter roles for your SQL account. Granting it the server-level sysadmin role is unnecessary for the lookup use case (and any Laserfiche use case) and represents a security risk (principle of least privilege).

SQL service accounts for Laserfiche applications at most need the server-level "db_creator" role (if you're creating an application database through an install/config wizard) and the "db_owner" database-level role (to make schema changes plus general read/write permission). 

0 0

Replies

You are not allowed to reply in this post.
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...