| Author |
Topic |
|
shyamprasad76
Starting Member
38 Posts |
 Posted - 2002-01-10 : 10:18:33
|
| Hi, I have a question regarding the SQL Server security issue. When I installed SQL Server 2000, I installed with “Mixed Mode Authentication”. Then I created some logins (UserId & Pswd) with Administrator access and using them in different web applications. Now, the management wants me to change the "Mixed mode" security to “ NT security”. Can any one tell me what would be the implications if I change the security mode from "Mixed mode" to "Windows NT"? Also what would I be providing as the UserId and Password for my web applications in the ADO Connection string, in case I change to "Windows NT" security. Finally what are the steps that I have to follow to safely change the Security from "Mixed Mode" to "Windows NT"? Thanks for the help, Shyam. |
|
|
smccreadie
Aged Yak Warrior
505 Posts |
Posted - 2002-01-10 : 10:22:23
|
| You will need to change your ADO connection string to use an authenicated connection instead of explicitly putting in the username and password in the code. You will also need to ensure that all the users have a valid NT account and that the account has rights in the database.To change SQL Server, I believe it's under one of the tabs in server properties to change the security scheme. |
 |
|
|
shyamprasad76
Starting Member
38 Posts |
Posted - 2002-01-10 : 10:28:35
|
| Can you please eloborate on this.How do i change my ADO connection string to use an authenticated connection instead of explicitly putting in the username and password in the code?Thanks in advance,Shyam. |
|
|
|
izaltsman
A custom title
1139 Posts |
Posted - 2002-01-10 : 10:37:06
|
| "Provider=sqloledb;" & _"Data Source=myServerName;" & _"Initial Catalog=myDatabaseName;" & _"Integrated Security=SSPI;"Don't forget to create a SQL login for your anonymous IIS account.Edited by - izaltsman on 01/10/2002 10:40:19 |
|
|
|
shyamprasad76
Starting Member
38 Posts |
Posted - 2002-01-10 : 13:05:42
|
| I am sorry,What do you mean by saying "create a SQL login for your anonymous IIS account" and how do i do that?Thanks,Shyam. |
|
|
|
izaltsman
A custom title
1139 Posts |
Posted - 2002-01-10 : 15:18:52
|
| Well, there is an account that IIS is using for anonymous access (called something like IUSR_YOURWEBSERVER). So you need to create a SQL Server login for this account like you would create a login for any other user (via sp_grantlogin or in EM @ Server\Security\Logins window).After you create a login, you will have to give it access to the databases that server as a back end to your app (sp_grantdbaccess or in EM @ Server\Databases\yourdb\Users window). And then grant some permissions (it's a good idea to let it only access stored procs -- avoid direct access to tables if possible).Edited by - izaltsman on 01/10/2002 15:23:39 |
|
|
|
shyamprasad76
Starting Member
38 Posts |
Posted - 2002-01-10 : 15:32:37
|
| Thanks very much.I just wanted to confirm that when i create the login in SQL Server, the User id would be: IUSR_MYWEBSERVERand password can be anything i want.Thanks for all the help,Shyam. |
|
|
|
izaltsman
A custom title
1139 Posts |
Posted - 2002-01-10 : 15:50:05
|
| When you are doing NT Authentication, you don't get to specify the password! And to confirm username, you can always look it up in the IIS (Open up Internet Service Manger on your web server, and check the properties for the web service). |
|
|
|
|
SQL Server security