locked
Mutli Tenant Dbase Environment - Security RRS feed

  • Question

  • Hi all,

    I've been tasked with doing some research on third party hosted multi tenant dbase server.  If a client would like the ability to create and run custom reports against his tenant dbase (say the server hosts 5 tenants all in their own dbases).  What we want to find documentation on, is whether or not there are any inherent dangers in providing this access to a client in regards to him being able to access other tenants data.  Any thoughts or links you may have are greatly appreciated.


    • Edited by kev5k Wednesday, September 13, 2017 2:00 PM
    Tuesday, September 12, 2017 1:04 PM

Answers

  • the server hosts 5 tenants all in their own dbases


    So every customer has it's data in an own separate database? Then I don't see an issue, grant the client user only Access to their own database.

    Olaf Helper

    [ Blog] [ Xing] [ MVP]

    Tuesday, September 12, 2017 2:16 PM
    Answerer

All replies

  • Create view to provide only needed data to the client, then grant SELECT on that specific view ONLY

    Best Regards,Uri Dimant SQL Server MVP, http://sqlblog.com/blogs/uri_dimant/

    MS SQL optimization: MS SQL Development and Optimization
    MS SQL Consulting: Large scale of database and data cleansing
    Remote DBA Services: Improves MS SQL Database Performance
    SQL Server Integration Services: Business Intelligence

    Tuesday, September 12, 2017 2:12 PM
  • the server hosts 5 tenants all in their own dbases


    So every customer has it's data in an own separate database? Then I don't see an issue, grant the client user only Access to their own database.

    Olaf Helper

    [ Blog] [ Xing] [ MVP]

    Tuesday, September 12, 2017 2:16 PM
    Answerer
  • You are correct, the framework/infrastructure is there in that the clients are already separated out to their own databases on the server.  Thank you for the input everyone.

    • Edited by kev5k Tuesday, September 12, 2017 8:59 PM
    Tuesday, September 12, 2017 8:32 PM
  • Multi tenant is a concept in Oracle 12c database. SQL server designed on the hierarchical database approach and you need to correspond a login/group to separate tenant database to eliminate any access complexions.

     

    Also make sure you don't grant sysadmin level for the login/group to restrict the access based on a database.

    If you are looking for sharepoint related multitenant topics, then below site can help you.

    multitenant


    -kccrga http://dbatrend.blogspot.com.au/



    • Edited by kccrga Monday, September 18, 2017 11:10 PM
    Friday, September 15, 2017 4:35 AM