什么是“综合安全”在SQL连接中 [英] what is "Integrated Security" in SQL Connection

问题描述

SQL连接中的集成安全性



hi



什么是集成安全性 在SQL连接中？

它必须是假的还是真的？



谢谢

what is "Integrated Security" in SQL Connection

hi

what is "Integrated Security" in SQL Connection?
and it must be false or true?

thanks

推荐答案

集成安全性

-or-

Trusted_Connection'false'连接是否是安全连接。识别的值是'true'，'false'和'sspi'，相当于'true'。

- http://www.connectionstrings.com/all-sql-server-connection-string-keywords/ [ ^ ]

使用集成安全性 （或其别名）当您想要使用用户的安全令牌访问数据库时，谁拥有当前线程或它被冒充了。当然，需要将线程用户配置为可以访问服务器，并且需要配置服务器以接受Windows身份验证。

这种方法的典型用法是在下创建Web应用程序时IIS没有假冒。无论连接到应用程序的客户端是什么，应用程序都会运行配置的应用程序池用户的名称。这样，应用程序池用户标识可以访问应用程序数据库而无需提供凭据。另一方面，如果在同一场景中使用模拟，则必须将客户端的所有可能用户添加到sql server安全性中，以使应用程序正常工作。

Use "integrated security" (or its aliases) when you want to access the database using the user's security token, who owns the current thread or it is impersonated by it. Of course, the thread user needs to be configured to have access to the server, and the server needs to be confgured to accept windows authentication.
Typical use of this approach is when you create a web application under IIS without impersonation. Than the application is running unther the name of the configured application pool user, regardless of the client connected to the application. This way, the application pool user identity can access the appication database without supplying credentials. On the other hand, if you use impersonation in the same scenario, all possible users from the client side has to be added to the sql server security for the application to work.

如果您的应用程序在基于Windows的Intranet上运行，您可以使用Windows集成身份验证进行数据库访问。集成安全性使用在操作系统线程上建立的当前Windows标识来访问SQL Server数据库。然后，您可以将Windows标识映射到SQL Server数据库和权限。

要使用Windows集成身份验证连接到SQL Server，您必须确定运行ASP.NET应用程序的Windows标识。您还必须确保已授予该标识访问SQL Server数据库的权限。本主题包含一个代码示例，显示ASP.NET应用程序的当前Windows标识。



或尝试..

https://www.google.co.in/search?q=集成+安全+在+ SQL和放大器; OQ =集成+安全+在+ SQL和放大器; gs_l = serp.3..0i20j0l2j0i22i30l7.335694.339786.0.340128.14.11.1.2.2.1.290.1458.0j4j3.7.0 .... 0 ... 1c.1.58.serp..8.6.786.dyUT-PxOKNU [ ^ ]

If your application runs on a Windows-based intranet, you might be able to use Windows integrated authentication for database access. Integrated security uses the current Windows identity established on the operating system thread to access the SQL Server database. You can then map the Windows identity to a SQL Server database and permissions.
To connect to SQL Server using Windows integrated authentication, you must identify the Windows identity under which your ASP.NET application is running. You must also be sure that the identity has been granted access to the SQL Server database. This topic includes a code example that displays the current Windows identity of the ASP.NET application.

or try ..
https://www.google.co.in/search?q=Integrated+Security+in+sql&oq=Integrated+Security+in+sql&gs_l=serp.3..0i20j0l2j0i22i30l7.335694.339786.0.340128.14.11.1.2.2.1.290.1458.0j4j3.7.0....0...1c.1.58.serp..8.6.786.dyUT-PxOKNU[^]

这篇关于什么是“综合安全”在SQL连接中的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！