Really scary. Server has public access. The 'sa' user is also known. (We have about 400 servers of our client in this situation).
Each server has a few applications that uses in their connection string the 'sa' login to access to the data.
Our scenario objetive is:
- Server must still be "public" (Cause the real owner of the server is NOT the client....). We can NOT remove administrator priviliges to the "public" user.
- Sql Server user must be only used by us, but WITHOUT changing the 'sa ' password, so we do not have to change 400 applications web.config.
So, we are loooking for some kind of product/software that can be placed between OS and Sql Server Management Studio so nobody with administrator privileges can open any SQL Tools, without knowing a new special password.
thanks in advance!