Reputation: 7912
Authenticating SQL connection using certificates in .NET
I've noticed that it is possible SQL Server 2005/2008 to authenticate replication accounts using certificates. Is it possible to authenticate .NET SqlConnection in the same manor?
Ideally, I'd like to do away with password authentication completely and have the aspnet user connect using a certificate stored against its account.
Is this possible, and if so, how can this be done?
Upvotes: 10
Views: 4525
Answers (2)
Reputation: 294227
The only way to authenticate a TDS protocol connection (ie. a user connection) is using Windows authentication (NTLM/Kerberos) or SQL Authentication (user/password). Is not possible to authenticate TDS connections using certificates. Only Database Mirroring and Service Broker connections can authenticate using certificates.
What you probably noticed is the HTTPS authentication between IIS and a client that occurs in Web Based Replication. That is indeed certificate based authentication, but occurs between the client and IIS and SQL Server is not involve din any way in it.
Upvotes: 5
Reputation: 238078
You can configure ASP.NET to use client side certificates, see this KB article.
But the ASP.NET server does not have access to your client's certificate. So the ASP.NET server cannot authenticate to SQL Server with a certificate.
Upvotes: 0
Related Questions
- Connecting to SQL Server using windows authentication
- How do I secure SQL Server database connection using certificate?
- .NET 6 Connection to SQL Server 2008
- Certificate-Based Authentication in SQL Server
- Connecting SQL Server with ASP.NET using Windows Authentication
- SSL Connection to database
- Connect to SQL Server with windows authentication
- how to connect a remote SQLserver using widows authentication from a .net application, if possible
- Establishing a secure connection to a secured database in SQL Server
- Is it possible to use client side certificates to connect to a SQL Server 2008 database?