Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
lvance1611
Starting Member
1 Post |
 Posted - 2009-03-27 : 09:44:03
|
Hey everyone,I'm working on some scripts that will run on a monitoring server and connect to several data servers to return information such as job status, etc. We also use linked servers for replication, etc.We use mixed authentication, however, I would like to change our linked servers to use the current security context based on AD authentication instead of connecting with the 'sa' account. When I set a linked server to use the current security context, I get: quote:
Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'. (.Net SqlClient Data Provider)
We manage our Windows security through AD groups rather than adding individual AD logins to SQL. So if I'm connected to a server through Enterprise Manager using Windows Authentication, it sees me as a part of the DBA group rather than an individual AD user. Since my individual Windows account hasn't been added under the remote server's logins, could that be causing this?I'm pretty well just grasping at straws here, but I want to move away from using the 'sa' account for our remote connections. Any advise is most welcome.Thanks!Lee |
|
|
sodeep
Master Smack Fu Yak Hacker
7174 Posts |
Posted - 2009-03-28 : 00:32:41
|
| Read about Security account Delegation and SPN. |
 |
|
|
|
|
|
Linked Server Security Context