Re: Best Practice for Windows Authentication?

From: Hugh Mungo (hugh_mungo_at_hotmail.com)
Date: 09/16/05


Date: Fri, 16 Sep 2005 13:46:09 +0100

The solution should work with IIS5 and above.
We are not using ASP.NET this is a classic ASP application.

"David J. Cartwright" <davidcartwright@hotmail.com> wrote in message
news:OcQFYgruFHA.2076@TK2MSFTNGP14.phx.gbl...
> what version of IIS you running ?, using ASP.NET ?
>
> http://msdn2.microsoft.com/en-us/library/bsz5788z
>
> "Hugh Mungo" <hugh_mungo@hotmail.com> wrote in message
> news:%23igmiopuFHA.3500@TK2MSFTNGP09.phx.gbl...
> > Hi,
> >
> > We are changing our classic ASP web application to use Windows
> > Authentication instead of SQL Server Authentication.
> >
> > I would like to know the best practice for:
> > 1. IIS and SQL Server are on the same machine and
> > 2.When they are on different machines in the same domain.
> >
> > I *think* the solution to 1. is to add the IUSR_MACHINENAME user to SQL
> > Server (this works but is it the best practice?)
> >
> > For 2. I have read different opinions. Some say create a
> > IUSR_IISMACHINENAME
> > account on the SQL Server and make sure they have the same password.
Other
> > say create a user on the domain and use that in IIS as the anonymous
user
> > (and give that user the relevant rights on SQL Server)
> >
> > I would like to know what is considered the best practice for this sort
of
> > authentication.
> >
> > Thanks in advance
> >
> >
>
>