Print Page | Close Window

Connect to SQL using Windows Authentication

Printed From: Web Wiz Forums
Category: Web Wiz Web App Support Forums
Forum Name: Web Wiz Forums
Forum Description: Support forum for Web Wiz Forums application.
URL: https://forums.webwiz.net/forum_posts.asp?TID=24605
Printed Date: 06 April 2026 at 12:23pm
Software Version: Web Wiz Forums 12.08 - https://www.webwizforums.com


Topic: Connect to SQL using Windows Authentication
Posted By: moti
Subject: Connect to SQL using Windows Authentication
Date Posted: 10 October 2007 at 3:50pm
I want connect my webwiz forum 8 to SQL using SQL Windows Authentication not SQL Authentication, but I don't know how to write my connection strin in database_connection.asp  file
if anybody knows this let me know
 
Thanks
 


Replies:
Posted By: WebWiz-Bruce
Date Posted: 10 October 2007 at 5:41pm
You need to use SQL Authentication to be able to use TCP/IP, otherwise web applications like Web Wiz Forums can not connect to the database.

If you are worried about security in mixed mode you can always do things like disabling remote connections, rename the sa account and create a fake sa account with datareader only access on the temp db.

To change the login name for the SA account run the following SQL:-

ALTER LOGIN sa WITH NAME = [username];

Change username above to the new name you want for your SA account.

If you want remote access and use a Firewall you can also use the Firewall to limit access to the SQL Server to just your own IP or IP range, or that of the web server.


-------------
https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting
https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting

Posted By: moti
Date Posted: 10 October 2007 at 8:59pm
Thanks borg
I already blocked SQL Remote ports and as you told me I will rename the SA account but is this enough for securing SQL ?
 
for example Microsoft says run SQL Services under a non administrator account or localsystem , but I use SQL Agent for running my jobs for daily backup and if the SQL Mixed Authentication is used the SQL Agent should have Administrative privilage to run ,
I don't know what to do ? to make sure my DB is secure.
 
Thanks

Posted By: WebWiz-Bruce
Date Posted: 11 October 2007 at 9:04am
In an ideal world then you would want to use trusted connections, but if you want to connect from web applications you need TCP/IP so you have to install in mixed mode.

It would be good if like in mySQL you can disable remote root connections, to do the same for SQL Server SA account.

However, if you have disabled remote connections then you shouldn't have any problem as no-one can log in externally, as an added protection rename the sa account. This should be enough security.


-------------
https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting
https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting

Posted By: moti
Date Posted: 11 October 2007 at 7:13pm
Thanks Borg


Print Page | Close Window

Forum Software by Web Wiz Forums® version 12.08 - https://www.webwizforums.com
Copyright ©2001-2026 Web Wiz Ltd. - https://www.webwiz.net