|
| PORTAIL | ANNUAIRE | ARTICLES | COMPARATEUR HÉBERGEURS | DEVIS | FORUMS | RÉDUCTEUR D'URL |
|
|
|
|
||||||
| ms.sqlserver.setup Questions about SQL Server. |
 |
|
|
LinkBack | Outils de la discussion |
16/04/2008, 05h38
|
#1 |
Messages: n/a
Hébergeur: |
Cross domain authentication in SQL 2005
Hi,
I wanted to start by saying that I am not a SQL Expert. My question revolves around mixed mode authentication and cross domain authentication. We are running a WIndows 2003 Domain both forest and Domain are at windows 2003 functional level. Currently we have all our SQL databases in Domain A. We are in the process of consolidating our business and its many domains into a new domain, Domain B. Both Domains are childs of root parent eg DomainA.parent.com and DomainB.parent.com. We are currently building a SQL Cluster and would like to join the Domain B domain, however, some questions were raised regarding current users in Domain A, how they would access the SQL servers in Domain B. At the moment users login via an application using their Domain A credentials which this is passed to the back end SQL server. When I view the currently logged in users on the DB, I can see that they are logged is as DomainA\username. My concern is that if we add the SQL servers to domain B, will the SQL servers recognize and send the authentication request to the clients domain for authentication and allow the user access? There is a 2 way trust between Domain A and Domain B. E.g. user Bob that is a member of Domain A signs into the application or SQL server that is now on Domain B using Domain A login credentials... will the credentials pass through correctly? Also, if the Database roles were assigned to a Domain A group, I am assuming that I would need to recreate that group on Domain B and add the users from Domain A into that group to allow of access? Thanks for the , hopefully I have been able to explain the issue.... Greg |
|
|
17/04/2008, 05h50
|
#2 |
|
Messages: n/a
Hébergeur: |
RE: Cross domain authentication in SQL 2005
SQL Server Windows authentication works fine when the two domains trust each
other. Linchi "Greg" wrote: > Hi, > > I wanted to start by saying that I am not a SQL Expert. My question > revolves around mixed mode authentication and cross domain authentication. > > We are running a WIndows 2003 Domain both forest and Domain are at windows > 2003 functional level. Currently we have all our SQL databases in Domain A. > We are in the process of consolidating our business and its many domains > into a new domain, Domain B. Both Domains are childs of root parent eg > DomainA.parent.com and DomainB.parent.com. We are currently building a SQL > Cluster and would like to join the Domain B domain, however, some questions > were raised regarding current users in Domain A, how they would access the > SQL servers in Domain B. > > At the moment users login via an application using their Domain A > credentials which this is passed to the back end SQL server. When I view > the currently logged in users on the DB, I can see that they are logged is as > DomainA\username. My concern is that if we add the SQL servers to domain B, > will the SQL servers recognize and send the authentication request to the > clients domain for authentication and allow the user access? There is a 2 > way trust between Domain A and Domain B. > > E.g. user Bob that is a member of Domain A signs into the application or SQL > server that is now on Domain B using Domain A login credentials... will the > credentials pass through correctly? > Also, if the Database roles were assigned to a Domain A group, I am assuming > that I would need to recreate that group on Domain B and add the users from > Domain A into that group to allow of access? > Thanks for the , hopefully I have been able to explain the issue.... > > Greg > |
|
|
|
| Outils de la discussion | |
|
|
