StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

POHow do I log the Windows user, not service account, to database?
primarykey
Id
9082358
data
AcceptedAnswerId
0
AnswerCount
2
ClosedDate
CommentCount
5
CommunityOwnedDate
CreationDate
2012-01-31T15:41:37.367
FavoriteCount
0
LastActivityDate
2012-01-31T16:43:52.593
LastEditDate
2012-01-31T16:43:52.593
LastEditorUserId
1180652
OwnerUserId
1180652
ParentId
0
PostTypeId
1
Score
3
ViewCount
811
LastEditorDisplayName
text
Body
We have a .NET 4 web application running on our intranet. When a user starts the application, the user's Windows creds are checked to ensure the user is a member of the correct Active Directory groups. If all goes well, the user is sent to our application page and they can begin working. The web application connects to the database through a generic service account (an account with limited abilities for doing things as a generic user). The system works fine. The user edits are logged. The problem is the user name being logged. The user name that gets logged is the name of the service account, not the name of the user. As you can imagine, this makes audits quite useless. Yes, we can tell a change was made and when the change was made and even what the change was but we can't tell who made the change. Some background - This project was started years ago and, at the time, built on SQL Server 2005. At that time, the lead developer concluded it wasn't possible to passthrough the Windows username to the database and get it to log the user name properly. The decision was made to "live with it" and re-evaluate when we moved to SQL Server 2008. So, we're now on SQL Server 2008 and I'm re-evaluating. The lead dev is no longer here. How do I continue using my service account but log the Windows account name? We don't want to create SQL accounts for each user. UPDATE 1 - I left out a critical detail. All the change logs we generate are trigger based. The audit records are generated by the database via triggers whenever a change occurs, not through SQL code in the web app.
Tags
<asp.net><sql-server-2008><.net-4.0><database-connection><username>
Title
How do I log the Windows user, not service account, to database?
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. This table or related slice is empty.
PostTypePostTypeId
1. PTQuestion
UserLastEditorUserId
1. USJoe
UserOwnerUserId
1. USJoe
plurals
PostLinksPostIdRelatedPostId
1. PL
 singulars
 LinkTypeLinkTypeId
 LTLinked
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. PO
 singulars
 PostTypePostTypeId
 PTAnswer
2. PO
 singulars
 PostTypePostTypeId
 PTAnswer
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 POHow do I log the Windows user, not service account, to database?
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
2. VO
 singulars
 PostPostId
 POHow do I log the Windows user, not service account, to database?
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
3. VO
 singulars
 PostPostId
 POHow do I log the Windows user, not service account, to database?
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTApproveEditSuggestion
CommentsPostId

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.