Last post Oct 20, 2011 11:18 AM by bbcompent1
Oct 19, 2011 06:24 PM|bicosteel|LINK
Hope someone can help. I have a group of .net apps that all use 1 web.config file that has been running on WEBSERVER for over a year with no issues, that has always pulled data from SQLSERVER. SQLSERVER has always had a local user aspanaon and all worked
fine with the settings, until we moved SQLSERVER and WEBSERVER into the domain. Now when it tries to validate a user fron teh login control I get
[SqlException (0x80131904): Login failed for user 'SQLSERVER\aspanon'.
I assume i may need to change the connection string? but really have no clue and haven't touched the setup in ages....
Source=SQLSERVER;Initial Catalog=aspnetdb;integrated security = SSPI"
Source=sqlserver;Initial Catalog=Pltdata;Integrated Security=True"
Oct 19, 2011 06:35 PM|bbcompent1|LINK
It looks to me like something is blocking the connection. either remote connections are turned off or McAfee may be the cause of the failure.
Oct 19, 2011 06:37 PM|bicosteel|LINK
Ok this is how much i have forgotten, where do i check for remote conections. Like i said I really don't think we changed anything other than joing the domain. Do i need to reference domain name in web.config?
Oct 19, 2011 06:45 PM|bbcompent1|LINK
Ok, for remote connections under SQL Server, here is a link to an MS Article:
Oct 19, 2011 06:47 PM|bbcompent1|LINK
Regarding McAfee blocking SQL, take a look here:
Oct 19, 2011 06:53 PM|bicosteel|LINK
remote connection were already on, I turned off kaspersky on the sql box though it has been running for 2 years. Anyway the thing that throws me is it looks like the app is trying to user local user\aspanon not domain\aspanon. For grins I asded the local
user sqlserver\aspanon back into the security of teh sql and gave it public rights to the db I need to pull data from. I can now get through the login control portion put when i try to go to a page that pulls data i get
The SELECT permission was denied on the object 'PlatesTable', database
'Pltdata', schema 'dbo'.
really seems like rights and local vs domain user, correct?
I see light at the end of the tunnel just no clue how to get there
Oct 19, 2011 06:56 PM|bbcompent1|LINK
Ok, for that user, you have to add the permissions to query against the table. What I usually do is map the user to that database. Give them datareader & datawriter and they should be able to query and update/delete/add.
Oct 19, 2011 06:57 PM|bbcompent1|LINK
For ease of use, you will want to install SQL Server Management Studio so you can control how the database works. MS is giving it away. :)
Oct 19, 2011 07:15 PM|bicosteel|LINK
yea i have been using studio for that. Ok just tested a few things, when i have the local sqlserver\aspanon as a login under Security\logins and have it set to reader and writer like you suggested and all my apps work and users can login I then created
a sql login of domain user bico\aspanon and gave it teh same rights on my data db and the aspnetdb that the local user on the sql box has. Next I removed just the local login from sql and tested again, puts me right back to the original message of Login failed
for user 'SQLSERVER\aspanon'.
Really seems like the app is trying to use the local account on the server and not a domain account and fails since i removed the login. If i give the local login rights agaion, it all works. I can use it this way but really do not want to have local accounts
out there. Really seems like i have a reference in the app config files that i need to add domain to????
Oct 20, 2011 11:18 AM|bbcompent1|LINK
Well, something just occurred to me, you will also for your web server need a service principle name added for it to your active directory. That's the only way I can think of it working by using the App Pool Identity properly. Let me know if that helps at
all. And for more info on SPNs, here ya go: