Home All Groups Group Topic Archive Search About

dot net 2 IIS authentication to SQL Server 2000 separate machine

microsoft.public.sqlserver.programming
Author
8 Jul 2005 2:06 PM
stokkeland
This may be the wrong group, really more of an IIS/.net 2 thing, but I
was hoping someone here has some experience...

Windows server 2003 std sp1 running IIS6 with .net 2 on one machine
Windows 2000 Server std sp4 running SQL Server 2000 std sp4 on other
machine
Both machines is a member of the same domain (on the same subnet even).

Is it possible to have the web client user authenticate with his/hers
windows domain to IIS/website and forward/use this to log on to the SQL
server on the other machine?

I have found a lot of info out there in this regard, most frequently
tip is to add "Integrated Security=SSPI;" to the connection string... I
messed around with this quite a bit and nothing I do seems to work..

My goal is to assign rights to execute stored procedures on the domain
level and not having to worry about data-access security in the web
app...

Author
8 Jul 2005 2:41 PM
Mike Epprecht (SQL MVP)
Hi

You need to impliment Delegation at .NET and IIS level. http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnbda/html/AuthASPdotNET.asp

Regards
--------------------------------
Mike Epprecht, Microsoft SQL Server MVP
Zurich, Switzerland

MVP Program: http://www.microsoft.com/mvp

Blog: http://www.msmvps.com/epprecht/



Show quote
"stokkel***@gmail.com" wrote:

> This may be the wrong group, really more of an IIS/.net 2 thing, but I
> was hoping someone here has some experience...
>
> Windows server 2003 std sp1 running IIS6 with .net 2 on one machine
> Windows 2000 Server std sp4 running SQL Server 2000 std sp4 on other
> machine
> Both machines is a member of the same domain (on the same subnet even).
>
> Is it possible to have the web client user authenticate with his/hers
> windows domain to IIS/website and forward/use this to log on to the SQL
> server on the other machine?
>
> I have found a lot of info out there in this regard, most frequently
> tip is to add "Integrated Security=SSPI;" to the connection string... I
> messed around with this quite a bit and nothing I do seems to work..
>
> My goal is to assign rights to execute stored procedures on the domain
> level and not having to worry about data-access security in the web
> app...
>
>

AddThis Social Bookmark Button

Post Other interesting topics
Why is Count(*) slow?
Bad datetime values stored by SQL Server 2000
Bitwise operations on BigInt
Upsized SQLServer app 100x slower than MsAccess
Where clause in variable?