I know it should provide a better security model for the client, but is it worth the complications? Does everyone just by default ignore 4.00sp2, and go immediately to Simple model? Or do some people prefer the Enhanced model?
Thanks
Can anyone give some small bullet points to what the actual benefits are in using Enhanced?I try to stay clear of it where ever possible, as I just don't see that there are any really??
Cheers
Littleoaks said: Can anyone give some small bullet points to what the actual benefits are in using Enhanced?I try to stay clear of it where ever possible, as I just don't see that there are any really?? Cheers
With enhanced security model, Navision uses security implemented natively in SQL. So you can use external applications to read Navision tables and use the same user that you have in Navision.
With standard Navision uses a proxy to read tables, meaning that security is done in proxy and not directly in SQL. That why enhanced takes so long to apply security. It has to apply permissions to all tables and objects for each user and some ties it fails because of deadlocks in tables.
Thanks for the response, would you say that if you are not using an external application to read NAV data, then the standard option is the best way to go, due to speed issues locking etc?
The locking problem only arises in synchronising. I always prefer to use standard security model, but it’s just a personnel opinion. When you have many users some times can problematic to synchronize all users in Enhanced security model.
I use simple almost exclusively now. A few months ago I sent the following question to Microasoft:
Is there a document available that explains the reasons for choosing one method over the other? I’m finding little reason to use the enhanced method. I plan to move another site to standard
And received this answer...
"..No, I am not aware of any document that explains the reasons. The Enhanced came about because of Microsoft’s Trustworthy Computing initiative.."
It really gives me a warm and fuzzy feeling when Microsoft can't explain the reasons for one of their "Enhancements"
babrown said:I use simple almost exclusively now. A few months ago I sent the following question to Microasoft: Is there a document available that explains the reasons for choosing one method over the other? I’m finding little reason to use the enhanced method. I plan to move another site to standard And received this answer... "..No, I am not aware of any document that explains the reasons. The Enhanced came about because of Microsoft’s Trustworthy Computing initiative.." It really gives me a warm and fuzzy feeling when Microsoft can't explain the reasons for one of their "Enhancements"
Sort of what motivated me to write this post. Thanks for the feedback, much appreciated.
The only thing with simple security is that if you are a developer then you need have the database owner or sys admin rights to be able to make changes to tables. When you don't have these permissions you get a great SQL error message.
triff said: The only thing with simple security is that if you are a developer then you need have the database owner or sys admin rights to be able to make changes to tables. When you don't have these permissions you get a great SQL error message.
This is normal SQL behavior and not a "Navision" issue. Only DB_Owner is allowed to modify objects owned by another user.