Pass Integrated Windows credentials to SQL Server w/out Basic Authentication?

Posted on 2005-05-02
Last Modified: 2012-06-27
Using ASP legacy (not .NET), IIS 6 on Win 2003, SQL is on a different server.

When I turn on Basic Authentication for the site, and enter my Windows Active Directory  user credentials, the database connection works.  When I turn on Integrated Windows Authentication (even leaving Basic enabled), it tries to use NT AUTHORITY\ANONYMOUS LOGON and fails.

Is there anyway around this?  I want it to just work, without having to type in credentials for the user account I'm already logged in as.

My connection string is:
"Provider=SQLOLEDB;Data Source=<server>;Initial Catalog=<database>;Integrated Security=SSPI"

Question by:bohiti

    Author Comment

    Figuring out how I wanted to phrase this question helped me refine my Google searches.  I found the following link:

    If you use SQL Server's Integrated or Mixed security features, and the SQL Server database resides on a remote server, you will not be able to use integrated Windows authentication. Specifically, you cannot forward integrated Windows authentication credentials to the remote computer. This means that you may have to use Basic authentication, which relies on the user to provide user name and password information.

    ...Pretty much answers my question.  If anyone has a workaround, I'd love to hear it!
    LVL 15

    Expert Comment

    Yes, this is the dreaded double hop limitation of Integrated Authentication.

    As far as I know there are no workarounds for SQL Server. The simplest solution is to have IIS and SQL Server running on the same box. Or re-write your app in ASP.NET...

    There ARE workarounds for connecting to Exchange (for example) but they're definitely what I'd call hacks.

    Here are two more articles from MSDN that explains things further:

    Bottom line is that (as far as I know) you're out of luck :-(

    Author Comment

    Thanks deighc.
    I'd like to delete the question if no one objects.
    LVL 15

    Expert Comment

    No objections from me.
    LVL 2

    Accepted Solution

    Closed, 125 points refunded.
    Friendly Neighbourhood Community Support Admin

    Featured Post

    What Is Threat Intelligence?

    Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

    Join & Write a Comment

    Suggested Solutions

    I have helped a lot of people on EE with their coding sources and have enjoyed near about every minute of it. Sometimes it can get a little tedious but it is always a challenge and the one thing that I always say is:  The Exchange of information …
    Hello, all! I just recently started using Microsoft's IIS 7.5 within Windows 7, as I just downloaded and installed the 90 day trial of Windows 7. (Got to love Microsoft for allowing 90 days) The main reason for downloading and testing Windows 7 is t…
    Internet Business Fax to Email Made Easy - With eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
    Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

    732 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    21 Experts available now in Live!

    Get 1:1 Help Now