This article describes how to configure the users of a SQL server to create a secure environment for a Mendix based application. To create a secure environment it is important to make a clear distinction between an user with an administrator role and a regular user of the application.
- Create an administrator: Create a user with the administrator role, for example ‘MendixAdmin’.
Set the server roles for the administrator: Depending on the tasks this user has to execute the administrator role should be connected to the following database roles:Create databasesCreate usersDatabase maintenanceComplete maintenance
dbcreatorV diskadminV processadmin securityadminV serveradminV setupadmin sysadminV
Define the user mapping for the administrator: Associate all the databases related to Mendix with the administrator. The template for these databases should be dbo and the role of the administrator should be: _dbowner.
Create (a) database user(s) for each Mendix application: Each Mendix application should have its own database user(s).
Set the server role for each user: Associate each user with the role public.
Define the user mapping for each user: Associate all the databases related to Mendix with their respective user(s). The template for these databases should be: dbo and the roles for each corresponding user should be: _dbdatareader and datawriter.
On this page you can find a step by step instruction on how to: Set up the database user