Reputation: 563
Integrated Security = False
If I use in a connection string:
integrated security=false;username=aduffy;password=blah
I assume this equates to
- I'm not using windows authentication
- and these are my SQL Server authentication details? (aduffy & blah)
That about right?
Upvotes: 6
Views: 57452
Answers (4)
Reputation: 241
If Integrated Security=True then it means the program will be using the current user's login to connect to SQL Server.
And If
Integrated Security=False then it means the program/ software needs User ID=*****;Password=*****; in order to connect to SQL Server from the application.
Upvotes: 1
Reputation: 6669
Yes you are right, to use the windows authentication you need to set Integrated security = true. Microsoft recommends SSPI when using windows authentication.
When false, User ID and Password are specified in the connection. When true, the current Windows account credentials are used for authentication. Recognized values are true, false, yes, no, and sspi (strongly recommended), which is equivalent to true. If User ID and Password are specified and Integrated Security is set to true, the User ID and Password will be ignored and Integrated Security will be used. SqlCredential is a more secure way to specify credentials for a connection that uses SQL Server Authentication (Integrated Security=false).
Upvotes: 1
Reputation: 13474
from msdn
Integrated Security When false, User ID and Password are specified in the connection. When true, the current Windows account credentials are used for authentication. Recognized values are true, false, yes, no, and sspi (strongly recommended), which is equivalent to true. If User ID and Password are specified and Integrated Security is set to true, the User ID and Password will be ignored and Integrated Security will be used.
Upvotes: 10
Reputation: 239636
SqlConnection.ConnectionString documents all of the valid SQL Server connection string keywords and their meanings.
Integrated Security:
When false, User ID and Password are specified in the connection. When true, the current Windows account credentials are used for authentication. Recognized values are true, false, yes, no, and sspi (strongly recommended), which is equivalent to true. If User ID and Password are specified and Integrated Security is set to true, the User ID and Password will be ignored and Integrated Security will be used.
SqlCredentialis a more secure way to specify credentials for a connection that uses SQL Server Authentication (Integrated Security=false).
Upvotes: 1
Related Questions
- Unable to connect to the Local Server with Integrated Security = True
- Security Principals missing in SQL Server 2008 R2
- Integrated security=false vs omitted
- Integrated Security=true is trying to log me with my windows credentials even though I want to use SQL authentication
- How do I convert this connection string to use integrated security?
- SQL Server 2008 integrated security
- Why does SQL integrated security work from command line but not when invoked from a different process?
- SQL server built-in security function
- Can't access SQL Server 2008 with anything but 'Windows NT Integrated Security'
- sql server 2008 security