I think that when user login from web site is to login Web server, but not database server.
The web site still need use connection string to handle users login to database server.
My question is that at this point can I use trust connection Winodws Authentication to identify user or I still need use SQL Authentication, since web server always knows who is the person login?
I need have user ID and password on the connection string for the web site to connectct to database in plan text.
If user login to database server when login to web server then database may consider it is trust user then the web site can use trust connection without provide user ID and password just for security concerns.
Just a thought that it might be solution if web server login to database server.
If user login to database server when login to web server then database may consider it is trust user then the web site can use trust connection without provide user ID and password just for security concerns.
Hi,
We use Windows authentication or SQL authentication to connect SQL Server database, when you use windows authentication, you need not provide user ID and password as it use window current acount to login your SQL Server, it's a trusted connection and genernally,
this account has full permission to control your instance databases. When you use SQL authentication, you need to provide userID and password to connect SQL Server database. It's different.
inungh
Member
68 Points
183 Posts
membership control
Nov 10, 2012 04:35 AM|LINK
I think that when user login from web site is to login Web server, but not database server.
The web site still need use connection string to handle users login to database server.
My question is that at this point can I use trust connection Winodws Authentication to identify user or I still need use SQL Authentication, since web server always knows who is the person login?
Your information and help is great appreciated,
Regards,
Inungh,
h.zahed@live...
Contributor
3171 Points
514 Posts
Re: membership control
Nov 10, 2012 06:45 PM|LINK
Hi,
What do you exactly want to do?
MCP-MCTS-MCPD
Mark the post as Answer, if it helped you in solving your question.
inungh
Member
68 Points
183 Posts
Re: membership control
Nov 10, 2012 11:21 PM|LINK
I need have user ID and password on the connection string for the web site to connectct to database in plan text.
If user login to database server when login to web server then database may consider it is trust user then the web site can use trust connection without provide user ID and password just for security concerns.
Just a thought that it might be solution if web server login to database server.
Your help and information is great appreciated,
Regards,
Inungh,
Chen Yu - MS...
All-Star
21829 Points
2513 Posts
Microsoft
Re: membership control
Nov 16, 2012 02:17 AM|LINK
Hi,
We use Windows authentication or SQL authentication to connect SQL Server database, when you use windows authentication, you need not provide user ID and password as it use window current acount to login your SQL Server, it's a trusted connection and genernally, this account has full permission to control your instance databases. When you use SQL authentication, you need to provide userID and password to connect SQL Server database. It's different.
More information about authentication mode: http://msdn.microsoft.com/en-us/library/ms144284.aspx
Thanks.
Feedback to us
Develop and promote your apps in Windows Store
inungh
Member
68 Points
183 Posts
Re: membership control
Nov 16, 2012 02:22 AM|LINK
Thanks a million for the message and helping,
Regards,
Inungh,