Solved

FileStream with Sql Server Authentification

Posted on 2009-06-29
4
432 Views
Last Modified: 2013-11-08
Hi there,

Can someone help me understand how I can configure a Sql Server 2008 filestream share so that it can be used on a web site that uses forms authentication and sql server authentication?
0
Comment
Question by:karakav
  • 2
  • 2
4 Comments
 
LVL 51

Expert Comment

by:Mark Wills
ID: 24741702
Well, you don't need a share per se. It is "owned" by sql server. SQL Server 2008 can store blobs in its own private NTFS namespace rather than in the database itself. The database contains pointers to that namespace (and it's contents are named for SQL server so no longer represents the original doco name).

So, it is the SQL Server (and agent) accounts that need access to that folder, and best via a domain accout for those services. The advantage is that SQL server manages it and you can hide all of it from the outside world.

There is a really good whitepaper : http://msdn.microsoft.com/en-us/library/cc949109.aspx

And a discussion : http://blogs.msdn.com/rdoherty/archive/2007/10/12/getting-traction-with-sql-server-2008-filestream.aspx

And an example : http://msdn.microsoft.com/en-us/library/cc716724.aspx  and http://mtaulty.com/CommunityServer/blogs/mike_taultys_blog/archive/2008/09/08/10729.aspx

And everything else you ever wanted to know about filestream (as a developer) : http://msdn.microsoft.com/en-us/library/bb895234.aspx

Sorry about the links, but they really are the best answers...

0
 
LVL 4

Author Comment

by:karakav
ID: 24742757
I actually implemented FileStream in a web application. The only downside is that I use integrated security and there everything is working perfectly. However I have to consider using forms authentication and sql server authentication and that's were I get a access denied error. I want to workaroung that problem but still use forms and sql server authentication.
0
 
LVL 51

Accepted Solution

by:
Mark Wills earned 500 total points
ID: 24745551
Well, that is going to be fun, because "to access the FILESTREAM BLOB by using Win32, Windows Authorization must be enabled." (from the manual)

So, you will need to create a domain user, give them access to those folders / directories add them or associate them with a SQL login and then login using that SQL login. The only account that is granted NTFS permissions to the FILESTREAM container is the account under which the SQL Server service account runs. So, you MUST use the OpenSqlFilestream APIs



0
 
LVL 4

Author Closing Comment

by:karakav
ID: 31598090
In other words, it is impossible to take advantage of FileStream without using Windows authentication. Thanks any way.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
database level memory cache..? 8 31
Add or delete table rows 10 54
exporting html table data 4 27
SQL - Curser to do an insert based on a select 2 10
In this article I will describe the Backup & Restore method as one possible migration process and I will add the extra tasks needed for an upgrade when and where is applied so it will cover all.
Use this article to create a batch file to backup a Microsoft SQL Server database to a Windows folder.  The folder can be on the local hard drive or on a network share.  This batch file will query the SQL server to get the current date & time and wi…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question