Re: Windows Authentication and software in a hosted environment.

Thanks for the response Warren!

The idea would be to use a firewall-to-firewall vpn, so user authentication
wouldn't necessarily happen until connection to the SQL server. What we were
hoping to accomplish is to have an application specific password on top of
the windows password. So that the user would have to authenticate themselves
to gain access to the application even if they are already logged into the
workstation. We also thought that the users application id could just be the
database user name & password however we want to log invalid login attempts
from within the application, as well as being able to load some database
specific information such as location names etc..



"Warren Brunk" wrote:

What type of authentication are you using for the VPN? Windows? or
something else.

If you are using something like ISA server then the user is passing windows
credentials in order to gain access to the domain. In this case you could
use windows auth on the SQL server.
In my experience with hosted DB solutions almost always SQL auth is used.

I dont see any reason why the client would have any type of server.

You could write as part of your client implementation script a SQL account
Creation. Perhaps make it the same script that creates the db using
something like

CREATE DATABASE Sales_1
ON
( NAME = Sales_dat,
FILENAME = 'c:\program files\microsoft sql
server\mssql\data\saledat.mdf',
SIZE = 10,
MAXSIZE = 50,
FILEGROWTH = 5 )
LOG ON
( NAME = 'Sales_log',
FILENAME = 'c:\program files\microsoft sql
server\mssql\data\salelog.ldf',
SIZE = 5MB,
MAXSIZE = 25MB,
FILEGROWTH = 5MB )

USE sales
GO
sp_addlogin @loginame = 'Sales_1', @password = 'password', defdb = 'sales_1'
GO
USE sales
GO
sp_grantdbaccess 'Sales_1'
GO




--
/*
Warren Brunk - MCITP - SQL 2005, MCDBA
www.techintsolutions.com
*/


"Sam Davis" <SamDavis@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:6779F1A3-5788-4DF1-9EDB-9494CE5D6289@xxxxxxxxxxxxxxxx
We are looking at creating an application which we would like to offer in
a
hosted environment. The database would be held at our data center, and the
user would connect through VPN to access the data. My question is if we
use
Windows Authentication do we need to manage the remote offices network
authentication, require them to have a windows server for authentication,
or
are we limited to just using SQL Authentication? What are the scenarious
required for this? In addition we would have a database per customer.
Which
means we would have to manage N domains, N = Number of Customers.

Any thoughts on the subject is appreciated.

Thanks

Sam



.

Relevant Pages

  • RE: Backups have Shadow Copy Problems
    ... and restarted the server. ... suggested and changed the recovery model to simple on the one database called ... I understand the issue to be: the backup task failed ... You back up data from a volume that contains a Microsoft SQL Server ...
    (microsoft.public.windows.server.sbs)
  • Re: upsizing to sql 2005
    ... the word SERVER in it, ... You can access to the database by multiple means (Access, ... and how does it update the SQL database with the new records in Access? ... Query Name: Arcadia - ARC ...
    (microsoft.public.access.queries)
  • Re: Linked Tables in Access
    ... any use of SQL Passthru, Linked Tables or any other use of MDB / MDE ... server, or would I also need to convert *those* queries to passthrough ... I've been trying to understand why Access database files become corrupt. ...
    (microsoft.public.access.adp.sqlserver)
  • Re: Trouble Getting VS.Net 2003 WalkThroughs MSDE Connection
    ... Config Tool of SQL Server? ... > link to download the PUBs database. ... >>> Setup and they directed me to install MSDE and they attached a ...
    (microsoft.public.sqlserver.msde)
  • Re: Leveling by ID vs. "Standard"
    ... of this trade called Project Management. ... a database for the "Project Tables," ... to write reports on data from the server database. ... product supporting queries created with SQL. ...
    (microsoft.public.project)