RE: Application Security

From: Kevin McDonnell [MSFT] (kevmc_at_online.microsoft.com)
Date: 07/07/04 

Date: Wed, 07 Jul 2004 00:43:38 GMT

It sounds like the VB application is using a connection string that is
requesting Windows Authentication. This is why it works if you
use a domain account or duplicate the user account and passwords. Check
the Security tab in Enterprise manager and verify that you are allowing
both SQL and Windows Authentication. Enable auditing for both failed and
successfull logins and test using both standard and Windows authentication
to validate the logging.

Thanks,

Kevin McDonnell
Microsoft Corporation

This posting is provided AS IS with no warranties, and confers no rights.

Relevant Pages

  • Re: Login failed for user . The user is not associated with a trusted SQL Server connection.
    ... run under a domain account with access the sqlserver. ... windows authentication it gives the above error. ... serverwith that, it reports that the testconnectionis successful, ... There's a code snippet below ...
    (microsoft.public.dotnet.framework.aspnet)
  • Re: Transmission of connection string in ADO.Net
    ... If using Windows Authentication, I think you will ... Since the connection string is the same, ... I think it will be better to use a domain account for authentication, ...
    (microsoft.public.dotnet.framework.adonet)
  • Re: Windows Authentication
    ... Windows authentication requires a network with a domain controller. ... might want to give the section titled Authentication Modes in BOL a look. ... > they log on to windows using a domain account - i can't seem to connect ...
    (microsoft.public.sqlserver.connect)
  • Windows Authentication
    ... the server and client are logged on to windows using "this computer", ... they log on to windows using a domain account - i can't seem to connect using ... windows authentication, ...
    (microsoft.public.sqlserver.connect)
  • Re: security: sql or win connections ?
    ... You can use windows authentication if your web app only requires one user, ... and the application / site is set to use anonymous access but has a domain ... you only need one connection string. ... > a user type or something like this..... ...
    (microsoft.public.inetserver.asp.db)
Loading