Re: Intranet access to SQL Server security issue

From: Dominick Baier [DevelopMentor] <dbaier@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Wed, 29 Mar 2006 04:28:08 +0000 (UTC)

http://msdn.microsoft.com/msdnmag/issues/05/09/SecurityBriefs/default.aspx

---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

I've lost count of the number of postings I have read on this subject
yet I can not find an answer.

I've set up my config file with impersonation as true, IIS is set to
Basic and Integrated authentication. The web page works fine on my
local machine, but on the intranet server I get the error Login
failed for user '(null)'. Reason: Not associated with a trusted SQL
Server connection.

The SQL server security is set as Windows and SQL Server. I have added
the Domain Users group to SQL Server and given it access to the
database.

Anybody have any ideas?

My local machine uses IIS 5.1 and the intranet server uses IIS 6.0 .
Could this be the issue?

Follow-Ups:
- Re: Intranet access to SQL Server security issue
  - From: chris . nolan

References:
- Intranet access to SQL Server security issue
  - From: chris . nolan

Prev by Date: Re: Intranet access to SQL Server security issue
Next by Date: Re: Intranet access to SQL Server security issue
Previous by thread: Re: Intranet access to SQL Server security issue
Next by thread: Re: Intranet access to SQL Server security issue
Index(es):
- Date
- Thread

Relevant Pages

Re: New to Merge/Replication
... ADO.NET 3.0 includes "Synchronization Services" that does not require IIS. ... Hitchhiker's Guide to Visual Studio and SQL Server ... It was my deepest hope that Merge/Replication between SQL Compact Edition and SQL Server 2005 Enterprise Edition would have it's own sync services NOT dependent on IIS. ... You can use merge replication with SQL Server on your main desktop serving as the publisher with SQL Compact on PPC, TabletPC, or other desktops as subscribers, so that would probably be the easiest solution for you. ...
(microsoft.public.sqlserver.ce)
Re: Help on synch to SQL server
... from SQL CE to SQL Server from your smart-device application's code. ... This can occur whenever the device has a network path to IIS, ... Unlike merge replication between SQL Servers where you can use RMO ... Ideally I would like to use Sql CE to synch with a SQL ...
(microsoft.public.sqlserver.ce)
Re: SMS_MP_CONTROL_MANAGER error 4960
... When I try to restart the IIS it says nothing.... ... Manually restart the SMS Agent Host service on the MP. ... MP encountered an error when connecting to SQL Server. ... The Default Web Site is disabled in IIS. ...
(microsoft.public.sms.setup)
Re: user account settings for vs.net
... > IIS ... > you want ADO.NET to access SQL Server, you need to open SQL Server and grant ... >> I don't think I need this account to be a member of the Power Users Group ... >> developing on this machine and uploading and debugging on another server, ...
(microsoft.public.vsnet.general)
RE: IUsr can not login
... I too am not sure what the IIS lockdown tool does (I am a SQL Server ... that had been assigned permission to login into SQL ... Amongst the NT account names will be the account/group that IIS ...
(microsoft.public.sqlserver.security)