Re: Utter madness!

From: Raterus (raterus_at_spam.org)
Date: 07/14/04 

Date: Wed, 14 Jul 2004 10:33:44 -0400

Where did you get that?, it is hilarious! Do you have a link?

Of course you can use integrated windows authentiction when IIS/sql server are on different computers, you must enable delegation on your webserver for this to work properly though.

http://support.microsoft.com/default.aspx?scid=kb;en-us;810572
--Michael

"Paul Mason" <masonp@cancer.bham.ac.uk> wrote in message news:eNB9QkaaEHA.3512@TK2MSFTNGP12.phx.gbl...
>
> I think i've been getting my groups mixed up.
>
> I've been trying to get my intranet system to authenticate to SQL server
> (2K) using a trusted connection for some time and have had to wait until we
> upgraded to Active directory for kerberos to start working (I'm not 100%
> sure it's kerberos so bear with me).
>
> Now I've hit the final brick wall which means this isn't ever gonna happen
> in the current setup. It finally twigged (dropped like a tonne of lead more
> like) when I read in the help :
>
> "If your application runs on a Windows-based intranet, you might be able to
> use Windows integrated security for database access. Integrated security
> requires:
> a.. That SQL Server be running on the same computer as IIS...... "
> I can't believe that someone from MS actually wrote this. Are they
> mad?...IIS and SQL server on the same machine....hackers paradise! Appart
> from being plain dangerous, it's bad networking practice, bad programming
> practice...it's just bad.
>
> Does anyone know if they are actually going to write something useful...or
> are we stuck with forms authentication forever!?! Not that I'm complaining.
>
> Cheers...P
>
>
>