Impersonation / Kerberos

M

Mark

Assume: IIS 6.0 and SQL Server 2000 are running on two separate windows 2003
servers on the same LAN and windows domain using Active Directory. All
client connections using IE 6.0+ are on the domain.

True or false:

To avoid sending a username and password from the client pc to the web
server while using impersonation to make database calls from our web server
to our SQL Server, we would have to use delegation so we could leverage
kerberos.

Thanks in advance!
Mark
 
A

avnrao

If you are connecting to SQL Server using Single Windows Identity from your
web server, you dont need impersonate the logged in client (also no need of
delegation). if you are just passing username to sql server, use stored proc
parameters.

if you are connecting to sql server using the identity of logged in client,
you need impersonation enabled and also delegation using kerberos.

Av.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Kerberos / Authentication to SQL2K 1
Impersonation 2
WCF and Kerberos 1
Newbie question about impersonation 5
Kerberos to NTLM delegation timeout 2
Kerberos Delegation Question 0
Impersonation with users of 2 domain (nor trusted) 0
TextTransform.exe and Windows Auth/Impersonation Problem 0

Staff online

Members online

Total: 35 (members: 1, guests: 34)
Robots: 198

Forum statistics

Threads
473,756
Messages
2,569,535
Members
45,008
Latest member
obedient dusk

Latest Threads

Top