Drew Wutka
DWUTKA at Marlow.com
Mon Mar 26 15:11:49 CDT 2007
Sort of, the way that IIS Security works with external resources may be the key. When you hit a web page, the webserver looks at the security setting, and then uses the appropriate method to access the file that you are trying to hit. If it's anonymous, then whatever account is setup at anonymous will be used to access the file (and if the file tries to access something else (like a network resource), it will use the same account credentials. Same with the other two methods, HOWEVER, Integrated Windows security will NOT pass the credentials on to a network resource. So, if you are trying to hit a SQL Server with Integrated security, it will have problems passing the security along. Drew -----Original Message----- From: accessd-bounces at databaseadvisors.com [mailto:accessd-bounces at databaseadvisors.com]On Behalf Of Doug Murphy Sent: Monday, March 26, 2007 1:56 PM To: 'Access Developers discussion and problem solving' Subject: Re: [AccessD] Way OT SQL Server/IIS permissions The current connection string does not contain userid and password, so I assume Anonymous. Eric suggested I set the permision to SQL Server Security and use the userID and password in the connection string. Have yet to test this. One question in this regard. I assume this is the password for a user defined in the database and not the server login? Doug -----Original Message----- From: accessd-bounces at databaseadvisors.com [mailto:accessd-bounces at databaseadvisors.com] On Behalf Of Drew Wutka Sent: Monday, March 26, 2007 12:45 PM To: Access Developers discussion and problem solving Subject: Re: [AccessD] Way OT SQL Server/IIS permissions Are you using Anonymous, Clear Text, or Integrated security on the pages? Drew -----Original Message----- From: accessd-bounces at databaseadvisors.com [mailto:accessd-bounces at databaseadvisors.com]On Behalf Of Doug Murphy Sent: Sunday, March 25, 2007 2:51 PM To: 'Access Developers discussion and problem solving' Subject: [AccessD] Way OT SQL Server/IIS permissions Folks, This is way OT but I know there are some very knowledgeable SQL server folks on this list. Here is my problem (the main one today anyway). I have a web application which I built for an organization I belong to. I built it in ASP.NET thinking that this would be a good chance to actually build something in it. The app. development went well. Used VS2005 with SQL Server 2005 express. Everything runs under the development server so, before moving to the host I tried testing under IIS on my machine. I keep getting an error on the opening page: "[SqlException (0x80131904): User does not have permission to perform this action.]". The error occurs on the open connection command so it is way before any of the site roles and permissions come into play. I have permissions set in SQL Server for IIS and ASPNET. There must be something else to set but my knowledge of sql server security is minimal so don't know where to look. Any suggestions you can give would be greatly appreciated. I am really sorry now that I just didn't go with what I know and use an access database with ASP pages. They work, are relatively easy to code and I know how to trouble shoot them. This learning thing is way too much trouble and time. Thanks for any suggestions. Doug -- AccessD mailing list AccessD at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/accessd Website: http://www.databaseadvisors.com -- AccessD mailing list AccessD at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/accessd Website: http://www.databaseadvisors.com -- AccessD mailing list AccessD at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/accessd Website: http://www.databaseadvisors.com