Re: NTLM authentication
- From: "Willy Denoyette [MVP]" <willy.denoyette@xxxxxxxxxx>
- Date: Thu, 4 Jan 2007 11:28:32 +0100
"webrod" <rodolphe.aoustin@xxxxxxxxx> wrote in message news:1167896693.425356.69600@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
AFAIK WSE 3.0 does not support NTLM, why not use Kerberos?
I forgot to answer to your question.
I can't use kerberos because I am on a Winnt system based on NTML not
kerberos.
I don't get it, this is a local intranet and you are only running SQL on a server which is not a Domain member and you want to authenticate windows (local )accounts using NTLM (that is SQL integrated security)?
Well, I'm afraid the answer is - you can't use WSE 3.0 without IIS hosting for this. One (the best long term) option is to use WCF, which supports SSPI and SPNEGO, that means it can authenticate using Kerberos and fallback to NTLM when not available.
Another option is to drop your DAL into a COM+ server application (using System.EnterpriseServices) and use ADAM with LDAP "authentication" in order to implement role based authorization. The COM+ server can run with "Windows" account credentials having access to SQL server. Note that you'll need to use SSL authentication between the client and the WSE service, if you want to make this secure, it makes littel sense to protect SQL access when one can catch the clear text password traveling between client and server.
Willy.
.
- Follow-Ups:
- Re: NTLM authentication
- From: webrod
- Re: NTLM authentication
- References:
- NTLM authentication
- From: webrod
- Re: NTLM authentication
- From: Willy Denoyette [MVP]
- Re: NTLM authentication
- From: webrod
- NTLM authentication
- Prev by Date: Multline TextBox question
- Next by Date: Re: NTLM authentication
- Previous by thread: Re: NTLM authentication
- Next by thread: Re: NTLM authentication
- Index(es):
Relevant Pages
|
