For SQL Server 2005 and SQL Server 2008.
We found an enterprising user that made his own ODBC, used his OS/authentication that an existing application uses, and created his own access database application. No malicious intent, just trying to do things (he thought) better and faster.
Lets leave out "Don't allow ODBC's to be created" discussion.
Are there different methods so "MyApplication" with "domain\userFred" is the only way Fred has access to the database? The vendor application ONLY uses authenticated user access. Some users are explicitly listed in the database, others are in domain groups.
Also, any way to do this in sql 2000? SQL 2000 is not an issue right now, but could be.