none
Authentication type RRS feed

  • Question

  • Hello!

    My SQL Server 2019 is running under the domain user account (sqlsrv), this account has the right to create SPN when the sql service starts and the spn does get created successfully. Nevertheless, the SQL Server still uses NTLM with Shared Memory even after Shared memory has been disabled:

    What prevents SQL Server from using TCP+Kerberos?

    Thank you in advance,
    Michael



    • Edited by MF47 Friday, May 31, 2019 2:45 PM
    Friday, May 31, 2019 2:43 PM

Answers

  • Are you querying the instance from the server itself? I think running SSMS on the server will always connect as NTLM. If you are querying locally, try using SSMS from a different machine and see what auth_scheme shows. HTH
    • Marked as answer by MF47 Monday, June 3, 2019 7:25 AM
    Friday, May 31, 2019 3:12 PM

All replies

  • Are you querying the instance from the server itself? I think running SSMS on the server will always connect as NTLM. If you are querying locally, try using SSMS from a different machine and see what auth_scheme shows. HTH
    • Marked as answer by MF47 Monday, June 3, 2019 7:25 AM
    Friday, May 31, 2019 3:12 PM
  • yes, from the server... Connection from another workstation  does use Kerberos - thank you very much, SQLRockstar!

    Regards,
    Michael

    Friday, May 31, 2019 3:35 PM