on 2021 Nov 21 1:56 AM
Hi,
I'm using SQL Anywhere 16 and trying to create a Remote Server to a SQL Server database using Windows Authentication. Both are on separate Windows 2019 server.
For ODBC to connect to the SQL Server, the Sybase service account is authenticated to SQL Server because of the Windows Authentication.
The Sybase service account does not have permissions to the databases on SQL Server. When I create the Remote Server, I am hoping to have the ability to impersonate or redirect the sign on to a different account that does have permissions to the database on SQL Server.
Is this possible? From what I can see, Remote Servers will only work with local accounts on SQL Server and not Windows Authentication.
Thanks,
Brian
When running SQL Anywhere in the context of a Windows service, the account that is supplied to an Integrated Login request is the account for the service. It will not use the account of the connected user to SQLA.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Chris,
Thanks for the reply. We have the Sybase service account connected to the SQL Server but the problem we are facing is, our Sybase server has several users and databases. We can't have 1 single account have complete access to all of the databases/objects on our SQL Server. That goes against some basic security policies.
Our hope is to either have the Remote Server allow impersonation, similar to how SQL Server Linked servers can. This would allow the service account to sign into SQL Server but pass a different account to the database it's connecting to.
Let me know if this is even possible. Unfortunately, using a local account on SQL Server is not possible. Our security model is to use Windows Authentication only.
Thanks,
Brian
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
70 | |
11 | |
10 | |
10 | |
9 | |
8 | |
7 | |
6 | |
6 | |
5 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.