Ask a Question related to ASP.NET General, Design and Development.
-
Ravikanth[MVP] #1
Is it possible for IIS and SQL server on Separate Machines with integrated auth
Hi
It is possible that IIS and SQL Server can reside on
Seperate Machines and you can use Integrated Windows
Authentication to connect.
Ravikanth
Machines>-----Original Message-----
>Is it possible for IIS and SQL server on SeparateIIS>with integrated windows Authentication in ASP.NET?
>
>The IIS and SQL server are on sepatated machines. I want
>to use the Integrated Windows Authentication. In IIS I
>enable NTLM. In web.config, I have <authentication
>mode="Windows" /> <identity impersonate="true"/>. But
>still failed. The IIS pass through account
>domainname/IIScomputername$ to SQL Server. But in thema>or in the domain, it doesn't have the such account.
>
>Then I search in Microsoft, found such article
>[url]http://msdn.microsoft.com/library/default.asp?[/url]
>url=/library/en-
>us/vbcon/html/vbtskAccessingSQLServerUsingMappedWindowsDoarticle>inUser.asp . It said the SQL server should be running on
>the same computer as IIS. But I also found anotherI'm>[url]http://support.microsoft.com/default.aspx?scid=kb;EN-[/url]
>US;176379. That's for asp. It said asp can do that. So>just wondering is it possible also for ASP.NET?
>
>robert
>
>
>.
>Ravikanth[MVP] Guest
-
Can I install CFMX7 Standard on 2 separate machines?
Can I install CFMX7 Standard on 2 separate machines? Or is it just one machine with 2 cpus in it? thanks! -
Why does flex not have its own integrated server?
why don't you have the option for a integrated install like CF does? I know you do if you use the dev edition...but why not for the commerical... -
Installing CF MX and IIS 6.0 on separate machines
I would like to use the one CF MX application server from multiple instances of IIS in our web farm. I see no documentation on this after looking... -
Client/server application and Windows Integrated Auth
Hi, I have a .NET WinForms application that needs to identify the user and authenticate this against a datastore (could be Access, SQL Server, or... -
Single external signon with Integrated Auth apps and regular webs
Hi, Well, after reading all of the posts in here, I'm still not quite sure if what I would like is possible. Here's my scenario: IIS5 (or 6 if... -
robert #2 Is it possible for IIS and SQL server on Separate Machines with integrated auth
hi, Ravikanth;
Could you give me more info how to do that? I've tried. I
set the IIS ->Directory Security -> Anonymous access and
authentication control-> edit-> select "integrated windows
authentication", no others. In web.config, <authentication
mode="Windows" /> <identity impersonate="true"/>. In
connection string,"integrated
security=SSPI;Trusted_Connection=Yes; persist security
info=False;" But still failed. The account from IIS send
to SQL server as the login account
is "domainname/IIScomputername$"
So what the problem I've done? how to solve the problem?
In msdn, [url]http://msdn.microsoft.com/library/default.asp?[/url]
url=/library/en-
us/vbcon/html/vbtskAccessingSQLServerUsingMappedWindowsDoma
inUser.asp. it said, Integrated security requires: That
SQL server be running on the same computer as IIS. Is that
wrong?
thanks
robert>-----Original Message-----
>Hi
>
>It is possible that IIS and SQL Server can reside on
>Seperate Machines and you can use Integrated Windows
>Authentication to connect.
>
>Ravikanth
>
>>Machines>>-----Original Message-----
>>Is it possible for IIS and SQL server on Separate>IIS>>with integrated windows Authentication in ASP.NET?
>>
>>The IIS and SQL server are on sepatated machines. I want
>>to use the Integrated Windows Authentication. In IIS I
>>enable NTLM. In web.config, I have <authentication
>>mode="Windows" /> <identity impersonate="true"/>. But
>>still failed. The IIS pass through account
>>domainname/IIScomputername$ to SQL Server. But in the>ma>>or in the domain, it doesn't have the such account.
>>
>>Then I search in Microsoft, found such article
>>[url]http://msdn.microsoft.com/library/default.asp?[/url]
>>url=/library/en-
>>us/vbcon/html/vbtskAccessingSQLServerUsingMappedWindowsDo>article>>inUser.asp . It said the SQL server should be running on
>>the same computer as IIS. But I also found another>I'm>>[url]http://support.microsoft.com/default.aspx?scid=kb;EN-[/url]
>>US;176379. That's for asp. It said asp can do that. So>.>>just wondering is it possible also for ASP.NET?
>>
>>robert
>>
>>
>>.
>>
>robert Guest
-
Aidan Glendye #3 Is it possible for IIS and SQL server on Separate Machines with integrated auth
Robert,
If you go through the steps in the following URLs you
should get this set up no problem.
[url]http://support.microsoft.com/default.aspx?scid=kb;en-[/url]
us;319723
[url]http://support.microsoft.com/default.aspx?scid=kb;en-[/url]
us;810572
Before going through all steps I would recommend that you
check the following:
Advanced option in IE of Enable Integrated Windows
Authentication is selected.
Using these articles enabled me to set up an environment
connecting from Client A -> IIS Server -> SQL Cluster
using integrated security and impersonation.
Hope that helps
Aidan Glendye
windows>-----Original Message-----
>hi, Ravikanth;
>
>Could you give me more info how to do that? I've tried. I
>set the IIS ->Directory Security -> Anonymous access and
>authentication control-> edit-> select "integrated<authentication>authentication", no others. In web.config,a>mode="Windows" /> <identity impersonate="true"/>. In
>connection string,"integrated
>security=SSPI;Trusted_Connection=Yes; persist security
>info=False;" But still failed. The account from IIS send
>to SQL server as the login account
>is "domainname/IIScomputername$"
>
>So what the problem I've done? how to solve the problem?
>
>In msdn, [url]http://msdn.microsoft.com/library/default.asp?[/url]
>url=/library/en-
>us/vbcon/html/vbtskAccessingSQLServerUsingMappedWindowsDomthat>inUser.asp. it said, Integrated security requires: That
>SQL server be running on the same computer as IIS. Iswant>wrong?
>
>thanks
>robert>>-----Original Message-----
>>Hi
>>
>>It is possible that IIS and SQL Server can reside on
>>Seperate Machines and you can use Integrated Windows
>>Authentication to connect.
>>
>>Ravikanth
>>
>>>>Machines>>>-----Original Message-----
>>>Is it possible for IIS and SQL server on Separate>>>with integrated windows Authentication in ASP.NET?
>>>
>>>The IIS and SQL server are on sepatated machines. Io>>IIS>>>to use the Integrated Windows Authentication. In IIS I
>>>enable NTLM. In web.config, I have <authentication
>>>mode="Windows" /> <identity impersonate="true"/>. But
>>>still failed. The IIS pass through account
>>>domainname/IIScomputername$ to SQL Server. But in the>>>or in the domain, it doesn't have the such account.
>>>
>>>Then I search in Microsoft, found such article
>>>[url]http://msdn.microsoft.com/library/default.asp?[/url]
>>>url=/library/en-
>>>us/vbcon/html/vbtskAccessingSQLServerUsingMappedWindowsDon>>ma>>>inUser.asp . It said the SQL server should be running>.>>article>>>the same computer as IIS. But I also found another>>I'm>>>[url]http://support.microsoft.com/default.aspx?scid=kb;EN-[/url]
>>>US;176379. That's for asp. It said asp can do that. So>>.>>>just wondering is it possible also for ASP.NET?
>>>
>>>robert
>>>
>>>
>>>.
>>>
>>
>Aidan Glendye Guest
-
robert #4 Is it possible for IIS and SQL server on Separate Machines with integrated auth
still doesn't work. Same error.
any other suggestion?
robertI>-----Original Message-----
>Robert,
>
>If you go through the steps in the following URLs you
>should get this set up no problem.
>
>[url]http://support.microsoft.com/default.aspx?scid=kb;en-[/url]
>us;319723
>
>[url]http://support.microsoft.com/default.aspx?scid=kb;en-[/url]
>us;810572
>
>Before going through all steps I would recommend that you
>check the following:
>
>Advanced option in IE of Enable Integrated Windows
>Authentication is selected.
>
>Using these articles enabled me to set up an environment
>connecting from Client A -> IIS Server -> SQL Cluster
>using integrated security and impersonation.
>
>Hope that helps
>
>Aidan Glendye
>>>-----Original Message-----
>>hi, Ravikanth;
>>
>>Could you give me more info how to do that? I've tried.m>windows>>set the IIS ->Directory Security -> Anonymous access and
>>authentication control-> edit-> select "integrated><authentication>>authentication", no others. In web.config,>>mode="Windows" /> <identity impersonate="true"/>. In
>>connection string,"integrated
>>security=SSPI;Trusted_Connection=Yes; persist security
>>info=False;" But still failed. The account from IIS send
>>to SQL server as the login account
>>is "domainname/IIScomputername$"
>>
>>So what the problem I've done? how to solve the problem?
>>
>>In msdn, [url]http://msdn.microsoft.com/library/default.asp?[/url]
>>url=/library/en-
>>us/vbcon/html/vbtskAccessingSQLServerUsingMappedWindowsDoD>a>that>>inUser.asp. it said, Integrated security requires: That
>>SQL server be running on the same computer as IIS. Is>want>>wrong?
>>
>>thanks
>>robert>>>-----Original Message-----
>>>Hi
>>>
>>>It is possible that IIS and SQL Server can reside on
>>>Seperate Machines and you can use Integrated Windows
>>>Authentication to connect.
>>>
>>>Ravikanth
>>>
>>>
>>>>-----Original Message-----
>>>>Is it possible for IIS and SQL server on Separate
>>>Machines
>>>>with integrated windows Authentication in ASP.NET?
>>>>
>>>>The IIS and SQL server are on sepatated machines. I>>>>to use the Integrated Windows Authentication. In IIS I
>>>>enable NTLM. In web.config, I have <authentication
>>>>mode="Windows" /> <identity impersonate="true"/>. But
>>>>still failed. The IIS pass through account
>>>>domainname/IIScomputername$ to SQL Server. But in the
>>>IIS
>>>>or in the domain, it doesn't have the such account.
>>>>
>>>>Then I search in Microsoft, found such article
>>>>[url]http://msdn.microsoft.com/library/default.asp?[/url]
>>>>url=/library/en-
>>>>us/vbcon/html/vbtskAccessingSQLServerUsingMappedWindows>o>on>>>ma
>>>>inUser.asp . It said the SQL server should be running>.>>.>>>>the same computer as IIS. But I also found another
>>>article
>>>>[url]http://support.microsoft.com/default.aspx?scid=kb;EN-[/url]
>>>>US;176379. That's for asp. It said asp can do that. So
>>>I'm
>>>>just wondering is it possible also for ASP.NET?
>>>>
>>>>robert
>>>>
>>>>
>>>>.
>>>>
>>>.
>>>
>>
>robert Guest
-
Scott Allen #5 Re: Is it possible for IIS and SQL server on Separate Machines with integrated auth
Hi Robert:
WIth IIS and SQL on seperate machines, you'll need to go one step past
"impersonation" and look at "delegation" via Kerberos. There is a good
description of why your situation does not work and the steps you
would need to take to use delegation in the following article (see the
"Security" section):
[url]http://www.databasejournal.com/features/mssql/print.php/2211161[/url]
Delegation requires a specific network environment, and is also
riskier from a security perspective, so you might want to consider the
"Delegation Alternatives" in the .net docs:
[url]http://msdn.microsoft.com/library/default.asp?url=/library/en-us/vsent7/html/vxconASPNETDelegation.asp[/url]
On Thu, 31 Jul 2003 23:27:03 -0700, "robert"
<robert.zheng@atfreeweb.com> wrote:
-->hi, Ravikanth;
>
>Could you give me more info how to do that? I've tried. I
>set the IIS ->Directory Security -> Anonymous access and
>authentication control-> edit-> select "integrated windows
>authentication", no others. In web.config, <authentication
>mode="Windows" /> <identity impersonate="true"/>. In
>connection string,"integrated
>security=SSPI;Trusted_Connection=Yes; persist security
>info=False;" But still failed. The account from IIS send
>to SQL server as the login account
>is "domainname/IIScomputername$"
>
>So what the problem I've done? how to solve the problem?
>
Scott
Scott Allen Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
