Re: SQL2005: Client-server security basics
- From: "David Gugick" <david.gugick-nospam@xxxxxxxxx>
- Date: Mon, 9 Jan 2006 18:08:14 -0500
Kirsten wrote:
I want clients to connect to SQLServer 2005 WITHOUT windows authentication mode. This is, using only SQL internal security.
1) Is there any way NOT to store passwords in client applications?
2) Are client connections, password and data transmission encypted by default? If not, how do I set this up? What about Windows 2003 PKI? (note: I have lots of Windows 98 client so don't suggest features of Windows XP). Thanks a lot! Kirsten
Your application should prompt the users for thier login name and password if you are not going to use Windows Authentication. From BOL: "To encrypt all data transmitted between an application computer and a computer running an instance of SQL Server, SQL Server 2005 can use the Secure Sockets Layer (SSL). Before enabling SSL encryption, you must install a server certificate from a certification authority on the database computer, and the client must have been issued a root certificate from the same certification authority. For more information about SSL encryption, see Encrypting Connections to SQL Server"
--
David Gugick
Quest Software
www.quest.com
.
- References:
- SQL2005: Client-server security basics
- From: Kirsten
- SQL2005: Client-server security basics
- Prev by Date: Re: MSDE login problem - Windows
- Next by Date: Re: MSDE login problem - Windows
- Previous by thread: SQL2005: Client-server security basics
- Next by thread: Re: MSDE login problem - Windows
- Index(es):
Relevant Pages
|
