Re: SQL2005 Linked server authentication problem
- From: "Lijun Zhang" <sonyzhang00@xxxxxxxxx>
- Date: Fri, 30 Mar 2007 11:02:55 -0500
Thanks!
"Woo" <Woo@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:AC317BCE-283D-41AE-A2AF-7961BA79EB8E@xxxxxxxxxxxxxxxx
Hiya,
Just to let you know I raised a call with MS about this issue and it turns
out this double-hop kerberos issue with linked servers in SQL2005 is an
actual MS bug and is resolved with SP2:
http://support.microsoft.com/default.aspx?scid=kb;en-us;921896
or hotfix 925843 (http://support.microsoft.com/kb/925843/)
Hope this helps!
Cheers
Wendy
"Lijun Zhang" wrote:
I am having the same problems as yours. It seems works again after I
reboot
the client machine. But this is not a solution since our application uses
Component Service to access the database. Rebooting the middle tier
machines
during work hours is not an option.
Please let me know how you solve the problem.
Lijun
"Woo" <Woo@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:8A5BAEF9-337E-4116-AD47-B67641E3B4FE@xxxxxxxxxxxxxxxx
Hi,
I am having an authentication issues with all my SQL2005 servers when
using
double-hop Kerberos authentication. The user I am authenticating is a
domain
admin.
The problem occurs when I tried to connect from a client PC, to a SQL
database where the query uses a linked server to retrieve the
information
from a different server e.g.
Running on a PC with SQL Native Client:
sqlcmd -S SERVER1 -E -I -t 15 -Q "select * from
server2.database.dbo.table"
When I try from a client to a SQL2005 then onto SQL2000 via linked
server,
I
get this error:
OLE DB provider "SQLNCLI" for linked server "dbaserver" returned
message
"Communication link failure".
HResult 0x2746, Level 16, State 1
TCP Provider: An existing connection was forcibly closed by the remote
host.
HResult 0x4814, Level 14, State 1
Login failed for user '(null)'. Reason: Not associated with a trusted
SQL
Server connection.
When I try from a client to a SQL2005 then onto SQL2005 via linked
server,
I
get this error:
Msg 18456, Level 14, State 1, Server WEBSTAGING, Line 1
Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'.
I have seen various articles with solutions they are all either
irrelevant
or dont make any difference:
1) http://support.microsoft.com/kb/919710
---We dont use certificates
2)Use SQL Server authentication
---Not an option
4) SynAttackProtect:
http://blogs.msdn.com/sql_protocols/archive/2006/04/12/574608.aspx
---Set this up in registry, rebooted server, made no difference
I checked this article and all steps were correct up to point 7:
http://blogs.msdn.com/sql_protocols/archive/2006/08/10/694657.aspx
BUT when I run "select net_transport, auth_scheme from
sys.dm_exec_connections where session_id=@@spid"
I get :
net_transport auth_scheme
----------------- ---------------
Shared memory NTLM
I am at a loss!
Any ideas??
ta
Wendy
.
- References:
- SQL2005 Linked server authentication problem
- From: Woo
- Re: SQL2005 Linked server authentication problem
- From: Lijun Zhang
- Re: SQL2005 Linked server authentication problem
- From: Woo
- SQL2005 Linked server authentication problem
- Prev by Date: Re: sp_configure 'user instances enabled'
- Next by Date: Re: add users in a transaction SQL Server 2000
- Previous by thread: Re: SQL2005 Linked server authentication problem
- Next by thread: Re: Request Encryption certificate from Windows 2003 CA
- Index(es):
Relevant Pages
|
