Hi,
I have a whitelist table which contains the list of the users who are authorised to access the server/DB/Application.
Since we have a lookup whitelist table to check, we don’t need to be concerned with what type of login id is coming into the database.
To keep it simple, we will check all incoming logins against the whitelist table,
if it exists in it, check for valid client where the connection is allowed. Suedo code listed below.
Login
Check against whitelist table
If not in whitelist table
No action
If exists in whitelist table
Check whether allowed clients match the data in the whitelist table
If does not match
Reject the login
Record the rejected attempt for future analysis
End