locked
WCF-SQL and SSO Authentication RRS feed

  • Question

  • Hi there,

    I want to understand better the functionning of WCF-SQL Adapter and the SSO Authentication.

    So if I understand well: in order to use SSO authentication on the WCF-SQL I need to configure an application in the ENTSSO.msc.

    The SSO can then store the login password of the SQL Server login.
    By referencing the newly created sso application in my WCF-SQL port I can access the SQL Server Database.

    My question is : Can I store windows user credentials (instead of SQL Server user) in the SSO that I would use to connect and execute my stored procedures in the SQL Server database?

    This would have the following advantages :
     - Personalize per database the connecting user (without having to use host instance users to connect)
     - Avoid having clear credentials of SQL user travelling through the network

    Any help would be greatly appreciated

    Regards,
    Stefan
    http://www.itsconsulting.fr

     

    Wednesday, February 3, 2010 4:18 PM

Answers

  • Just to describe furthermore my concern
    in the link http://msdn.microsoft.com/en-us/library/dd788440(BTS.10).aspx

    it says
    When configured for SSO, the WCF-Custom adapter uses services provided by SSO to get the SQL Server user name and password from the SSO database. It provides these (unencrypted) to the SQL adapter, so that the adapter can open a connection to the SQL Server database. SSO provides no encryption or protection across the connection between the SQL adapter and the SQL Server database.

    Does this mean that I cannot store Active Directory Accounts in the SSO Application?

    Regards,
    Stefan
    http://www.itsconsulting.fr
    Wednesday, February 3, 2010 4:36 PM

All replies