Re: using windows authentication...

From: AnthonyThomas (Anthony.Thomas_at_CommerceBank.com)
Date: 12/27/04 

Date: Sun, 26 Dec 2004 23:08:34 -0600

First, let's get something straight: SQL Server DOES NOT TALK TO WEB
SERVERS. Web clients request access and data from database servers,
directly or indirectly, and the DBMS' respond to those requests. SQL Server
or any other DBMS works the same way.

That being said, the communication is inbound; so, it needs to be taken very
seriously so it is configured and secured correctly. I will tell you,
however, that Integrated Security is...a hundred times better than SQL
Server security. Not just because of the encryption algorythms or Group
Policies, although those increase the security, it has more to do with how
developers deal with security under the two contexts.

Integrated Security requires thought and architectural planning to even get
it to function. SQL Server security is easy; so easy, it lulls you into a
false sense of security. This more than anything else--sloppiness--is why
making the switch increases the security of the system.

Check out the Microsoft Systems Architecture: Internet Data Center white
papers. This is the most comprehensive text I've seen for the overall, as
well as detailed level, design of a distributed architecture.

http://www.microsoft.com/resources/documentation/msa/idc/all/solution/en-us/default.mspx

Hope this helps.

Sincerely,

Anthony Thomas 

-- 
"Hassan" <fatima_ja@hotmail.com> wrote in message
news:u6$n9NK6EHA.3700@tk2msftngp13.phx.gbl...
Our Web servers are exposed to the internet and our SQL Server talks to the
Web Servers. If we do implement Windows authentication mode for the SQL, how
do we setup the client connection from the Web Servers ? I mean we have
different content by different teams on the same Web Servers. How can we
handle security from a Windows authentication ? I mean do the Web Servers
need to be logged on with a particular account that has access to SQL.
Please advise.
Thanks

Relevant Pages

  • Re: Remote disk space analysis
    ... Check the drive space on all of the servers listed in a text file and store the output like Server name, Drive Name, Disk Space and Free space information on a SQL Server table. ...
    (microsoft.public.scripting.vbscript)
  • Re: SQL Clustered Node restarting unexpectedly
    ... Found it to be a NMI that was caught by the system BIOS ... Mike Epprecht, Microsoft SQL Server MVP ... > Servers on 2 nodes connected to SAN Storage using Fibre ... > for network name resource SQL network name ...
    (microsoft.public.sqlserver.clustering)
  • Re: Hiding MS SQL databases in Enterprise Manager
    ... > When I create a database in the Microsoft SQL Server, ... > security issue, I would like to set it up so that users can only see ... > databases for which they've been assigned a role. ... your SQL servers, not at preventing a list of them. ...
    (Focus-Microsoft)
  • Re: Not associated with a trusted SQL Server connection....
    ... I altered my publisher account to impersonate the SQLServer ... > Are both SQL Servers and SQL Server agent running under the same account? ...
    (microsoft.public.sqlserver.replication)
  • Re: Need urgent help regarding security
    ... There is plenty of security info out there ... email from even a dozen servers is small. ... an OS version upgrade should not be taken lightly. ... Given that your root password was apparently found on the servers, ...
    (freebsd-questions)