Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

linked server with windows authentication and wihout AD(kerberos)

141 views
Skip to first unread message

Aflatunov@discussions.microsoft.com Igor Aflatunov

unread,
Mar 12, 2005, 12:59:02 AM3/12/05
to
Hi All!

I have two Windows Server 2000 with SQL Servers 2000 installed and
uses windows authentication only.

Can i use linked server without Security Account Delegation (no domain, AD,
... ) and not use SQL authentication?

P.S.: Presently I use pass-through windows account authentication (same
username/password on two windows servers), but this not works with linked
server.

Thanks in advance.
Igor.


John Bell

unread,
Mar 12, 2005, 5:07:11 AM3/12/05
to
Hi

Mike answered this in microsoft.public.sqlserver.securitytools. Please do
not multi-post.

John

"Igor Aflatunov" <Igor Afla...@discussions.microsoft.com> wrote in message
news:CA9B20F2-C6FA-4F59...@microsoft.com...

Igor Aflatunov

unread,
Mar 12, 2005, 5:43:03 AM3/12/05
to
Hi!
John, this is not multi-post.
I sent message from MS-site
"http://msdn.microsoft.com/newsgroups/managed/default.aspx"
which does not contain newsgroup
"microsoft.public.sqlserver.securitytools".

And Mike answer does not solve my problems.

I can't use "Security Account Delegation" since not have any Domain, AD, ....
Please read my post again.

Igor.

Mike Epprecht (SQL MVP)

unread,
Mar 12, 2005, 5:53:43 AM3/12/05
to
Hi

Then you can not do it.

A computer needs to trust another computer, otherwise it doe not know that
the credentials passed are actually genuine.

No Domain, no AD = you need to use SQL authentication on the linked server.

Regards
--------------------------------
Mike Epprecht, Microsoft SQL Server MVP
Zurich, Switzerland

IM: mi...@epprecht.net

MVP Program: http://www.microsoft.com/mvp

Blog: http://www.msmvps.com/epprecht/

"Igor Aflatunov" <IgorAf...@discussions.microsoft.com> wrote in message
news:6B4C6641-E029-4469...@microsoft.com...

John Bell

unread,
Mar 12, 2005, 9:01:07 AM3/12/05
to
Sorry!

"Igor Aflatunov" <IgorAf...@discussions.microsoft.com> wrote in message
news:6B4C6641-E029-4469...@microsoft.com...

Igor Aflatunov

unread,
Mar 13, 2005, 11:03:08 PM3/13/05
to
Hi!

I create linked server for RPC call in job tasks.
And use pass-through account authentication (same username/password)
between windows-servers. All works fine.

Problem was because i tried tests linked server from EM on client.
"NTLM authentication does not support "double hop"..."
http://support.microsoft.com/?id=238477

Thanks in advance.
Igor.

"Mike Epprecht (SQL MVP)" wrote:

> Hi
>
> Then you can not do it.
>
> A computer needs to trust another computer, otherwise it doe not know that
> the credentials passed are actually genuine.
>
> No Domain, no AD = you need to use SQL authentication on the linked server.
>
> Regards
> --------------------------------
> Mike Epprecht, Microsoft SQL Server MVP
> Zurich, Switzerland
>
> IM: mi...@epprecht.net
>
> MVP Program: http://www.microsoft.com/mvp
>
> Blog: http://www.msmvps.com/epprecht/
>
> "Igor Aflatunov" <IgorAf...@discussions.microsoft.com> wrote in message
> news:6B4C6641-E029-4469...@microsoft.com...
> > Hi!
> > John, this is not multi-post.
> > I sent message from MS-site
> > "http://msdn.microsoft.com/newsgroups/managed/default.aspx"
> > which does not contain newsgroup
> > "microsoft.public.sqlserver.securitytools".
> >
> > And Mike answer does not solve my problems.
> >
> > I can't use "Security Account Delegation" since not have any Domain, AD,

> .....

Kevin McDonnell [MSFT]

unread,
Mar 14, 2005, 2:53:15 PM3/14/05
to
Follow this kb.

INF: SQL Server 2000 Kerberos support including SQL Server virtual servers
on server clusters (319723)

Thanks,

Kevin McDonnell
Microsoft Corporation

This posting is provided AS IS with no warranties, and confers no rights.

0 new messages