Re: Web Server connecting to db server on different machines
- From: Ben <ben_1_ AT hotmail DOT com>
- Date: Tue, 28 Mar 2006 09:45:55 -0800
Dominick
Thanks for the replies (again).
That solution wont work for use as we are building security into the
database to identify which data a user has access to based on their domain
account.
I will have to investigate either delegation or having the web server reside
on the same machine as the database.
Thanks again.
"Dominick Baier [DevelopMentor]" wrote:
hi - no problem -.
not really a good one -
but the general idea is that you do authentication, authorization and auditing
in the middle tier and access the back-end resource using the middle tier
server credentials as opposed to the client ones...
---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com
Sorry for the question, but do you have a link that describes the
trusted subsystem design?
Thanks for your help!
"Dominick Baier [DevelopMentor]" wrote:
Hi,
if you want to delegate client credentials - kerberos is they only
way to go.
You could disable delegation and use a trusted subsystem design to
access the back-end resources.
---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com
Thank you.
Seeing as I may not be able to convince our AD services group to do
this, is there another option?
Thanks.
"Dominick Baier [DevelopMentor]" wrote:
http://msdn.microsoft.com/msdnmag/issues/05/09/SecurityBriefs/defau
lt .aspx
---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com
Hello
Im creating an asp.net web app that will need to connect to a SQL
Server db on another machine. I have set this up using trusted
connections and impersonation in the web.config file but I am
getting a "Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'"
message. I need this to work through domain accounts on both
machines.
Currently, it will work if I am using the machine where the web
app resides (ie. http://localhost/webapp/page.aspx) but i get the
above message when using another remote machine.
Any help is appreciated.
Ben
- Follow-Ups:
- Re: Web Server connecting to db server on different machines
- From: Joe Kaplan \(MVP - ADSI\)
- Re: Web Server connecting to db server on different machines
- References:
- Re: Web Server connecting to db server on different machines
- From: Dominick Baier [DevelopMentor]
- Re: Web Server connecting to db server on different machines
- From: Dominick Baier [DevelopMentor]
- Re: Web Server connecting to db server on different machines
- From: Dominick Baier [DevelopMentor]
- Re: Web Server connecting to db server on different machines
- Prev by Date: Re: Web Server connecting to db server on different machines
- Next by Date: 401 Unauthorized on HttpWebRequest with DefaultCredentials (2003)
- Previous by thread: Re: Web Server connecting to db server on different machines
- Next by thread: Re: Web Server connecting to db server on different machines
- Index(es):
Relevant Pages
|
|
