Home Forums SQL Server 2005 SQL Server Newbies how to run xp_cmdshell via .NET App using non SYSADMIN role RE: how to run xp_cmdshell via .NET App using non SYSADMIN role

  • February 24, 2014 at 8:03 am

    #1691570

    The certificate method is a real PITA and mostly unnecessary. If you write a stored procedure that does the work and include EXECUTE AS OWNER and the database is owned by a login having SA privs (hopefully, the owner is "SA" and that account is disabled), then the app won't need any privs except privs to run the stored procedure.

    Whatever you do, do NOT give the app privs to execute xp_CmdShell directly.

    --Jeff Moden

    RBAR is pronounced "ree-bar" and is a "Modenism" for Row-By-Agonizing-Row.
    First step towards the paradigm shift of writing Set Based code:
    ________Stop thinking about what you want to do to a ROW... think, instead, of what you want to do to a COLUMN.

    Change is inevitable... Change for the better is not.

    Helpful Links:
    How to post code problems
    How to Post Performance Problems
    Create a Tally Function (fnTally)