Re: Integrated security -whose credentials are used?

From: Jasper Smith (jasper_smith9_at_hotmail.com)
Date: 05/16/03 

Date: Fri, 16 May 2003 07:47:06 +0100

The connection string doesn't change because it will specify
Integrated Security=SSPI; thus it remains the same and the
built in pooling will continue to function regardless.

If you are using integrated secuirty on the virtual directory and
want to pass the users credentials to SQL Server when IIS and
SQL are on separate servers then you need to use Kerberos
Have a look at the link below, it refers to ASP.NET but the same
principals apply when using ASP.
http://msdn.microsoft.com/library/en-us/dnnetsec/html/SecNetHT05.asp

If you want all users to connect with the same credentials then you can
enable anonymous access and change the anonymous user account in
IIS for that virtual directory to a specific domain account that you have
created a login for in SQL Server 

-- 
HTH
Jasper Smith (SQL Server MVP)
I support PASS - the definitive, global
community for SQL Server professionals -
http://www.sqlpass.org
"sidd khare" <anonymous@devdex.com> wrote in message
news:%23zSq4AzGDHA.1772@TK2MSFTNGP10.phx.gbl...
> thanks Jasper,
> this is what i infer from your reply.please correct me if i am wrong.
> 1)when you connect using integrated security what  credentials are used
> has nothing to do with who and if some one is logged on to web server
> machine.
> it's IIS virtual directory settings which determine what credentials are
> used.
> is that correct?
>
> Assuming that correct.
> so now
> if i have only 'Integrated Windows Authentication' checked in
> IIS-directory Security.
> and i am using Integrated Authentication for connecting to sql server
> using ado.
>
> Do i stop making use of ado connection pooling . because ADO creates a
> separate connection pool for each unique connection string.
>
> that means application may not be scalable.
> any thoughts on this.
> -sidd
>
>
> *** Sent via Developersdex http://www.developersdex.com ***
> Don't just participate in USENET...get rewarded for it!

Relevant Pages

  • Re: I am having a problem in my asp in the recorsets running at iis 6.0 and sql 2000. Sometimes it
    ... pooling when I use mine. ... > maintaining your code know what each recordset contains? ... Always use an explicit connection ... Let SQL Server ...
    (microsoft.public.inetserver.asp.general)
  • Re: Why does connection pooling not work as expected here in IIS7 with SqlConnections?
    ... The login/logout operations are normal. ... That's SQL Server cleaning up the previous user and the session state. ... Connection pooling is not needed in most Windows Forms applications but in ASP.NET applications, it's essential to get the scaling you need to support a large customer base. ...
    (microsoft.public.dotnet.framework.adonet)
  • Re: Error "SQL Server does not allow remote connections"
    ... The application could not connect to the sql server db. ... network is blocking the connection. ... SqlInternalConnectionTds connHandler, Boolean ignoreSniOpenTimeout, Int64 ... integratedSecurity, SqlConnection owningObject) +737554 ...
    (microsoft.public.dotnet.framework.aspnet)
  • Re: Connection from remote computer to network SQL Server
    ... There is no firewall on the W2K machine acting as the SQL server. ... I tried making the SQL machine a "trusted" on the router. ... connection works. ... To find the IP address of your computer inside the network, ...
    (microsoft.public.access.adp.sqlserver)
  • ADO.net Orcas Samples Install Problem
    ... An error has occurred while establishing a connection to the server. ... When connecting to SQL Server 2005, this failure may be caused by the ... SqlInternalConnectionTds connHandler, Boolean ignoreSniOpenTimeout, ... or am I better off with a full SQL Server install. ...
    (microsoft.public.dotnet.framework.adonet)