Click here to Skip to main content
15,915,093 members
Search within:


Remote SQL database connection
Please Sign up or sign in to vote.
0.00/5 (No votes)
See more:
VB
Good day to you all. I am trying to connect to a remote sqlserver database through a windows form application. But the only alternative i keep getting the connection string is the following which i wish to know how secure it:

"Data Source=190.190.168.100,1433;Network Library=DBMSSOCN;Initial catalog=myDataBase;User ID=myUsername;Password=myPassword;"

in the place of user name, I used the "sa" account which ignited my doubt about the safety of the string.

The remote server is running on windows server 2012 and the db is sql2014.


Any help with this will be appreciated.

Thanks in advance
Frank.

What I have tried:

I use the following connection string which when running within the same domain works well, but failed with other network domain over the internet.

"Data Source=NEPTUNSERVER\NTSERVER;Initial Catalog=ITEM_MGR; integrated security =True"
Posted
Updated 26-Aug-16 2:00am
Add a Solution

3 solutions

As your SQL Server is running in mixed mode and you want to login from some other domain, you should stay with the SQL Server authentication mode approach.

You are right to hesitate using "sa". Create a user for your application in SQL Server (get help from a database admin if you are not allowed to do so).
Grant this user not more than the rights needed by your application.
You may generate the required sql commands with a script

SQL
 IF NOT EXISTS (SELECT * FROM master.dbo.syslogins WHERE loginname = N'yourUserName')
BEGIN
    CREATE LOGIN [yourUserName] WITH PASSWORD=N'yourPassword'
   ,DEFAULT_DATABASE=[yourDataBaseName]
   ,CHECK_EXPIRATION=OFF
   ,CHECK_POLICY=OFF
END


IF NOT EXISTS (
		SELECT *
		FROM dbo.sysusers
		WHERE NAME = N'yourUserName'
			AND uid < 16382
		)
	EXEC sp_grantdbaccess N'yourUserName'	,N'yourUserName'


 
SELECT 'GRANT SELECT,INSERT,UPDATE,DELETE ON ' + a.table_name + ' TO yourUserName'
FROM (
	SELECT DISTINCT table_name
	FROM information_schema.columns
	WHERE table_name LIKE '%yourSearchToken%'
	) a

-- check, edit the resulting list and execute it
 
Share this answer
 
Posted
Updated 17-Aug-16 21:53pm
v2
Hi,
You can use connection string like below,

C#
SQLCONNSTR = "Data Source= 192.168.1.1 ;Initial Catalog=DAName;User ID=Test & ";pwd=Test;"


And make sure SQL server has configure to received the connection over TCPIP
 
Share this answer
 
Posted
Comments
Frankie-10589807 6-Sep-16 9:27am    
Thank you so much Subodh. Will get back to you.

Frank
Thank you so much Mr. FranzBe, though i am yet to try this solution, but i keep getting the feeling that i have to use the ip address of the server to be able to establish connection over the internet with the app. However, even in the same domain, the connection is failing with the IP address, unless i use the server name and stated above. I try to seek the help of a DBA again to see how this will go. What solution that works, i will post on this platform.

Thanks again, Mr. FranzBe
 
Share this answer
 
Posted
Add a Solution

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

  Print Answers RSS
Top Experts
Last 24hrsThis month
Related Questions
Connecting to remote SQL database
working with remote sql database connection
Connect to remote SQL database with Visual C#
Remote connection to Sql server 2008 Database
C# connect SQL server that blocking remote connection
sql server remote connection
Sql Server Remote Connection
sql allow remote connection
connect c# to remote sql server
Connect remote to database C#

Advertise
Privacy
Cookies
Terms of Use
Last Updated 26 Aug 2016
Layout: fixed | fluid
Copyright © CodeProject, 1999-2024
All Rights Reserved.

Web01 2.8:2024-05-30:1

CodeProject, 20 Bay Street, 11th Floor Toronto, Ontario, Canada M5J 2N8 +1 (416) 849-8900