Home Forums Article Discussions Article Discussions by Author Discuss Content Posted by Steve Jones Security RE: Security

  • January 6, 2009 at 4:38 am

    #921665

    Hi Steve,

    Impersonation is a generic term for using the security settings of a user that you are not authenticated as. This term is used *both* for

    (a) database users impersonating other database users (using the EXECUTE AS command, or executing stored procedures with the EXECUTE AS clause), which requires the aptly named IMPERSONATE permission - see also the link free_mascot posted; and

    (b) the SQL Server service connecting to another instance under the context of an authenticated Windows user.

    So both the first and the third answer are correct.

    Hugo Kornelis, SQL Server/Data Platform MVP (2006-2016)
    Visit my SQL Server blog: https://sqlserverfast.com/blog/
    SQL Server Execution Plan Reference: https://sqlserverfast.com/epr/