Are you ready to take your data science career to the next step, or break into data science? With Springboard’s Data Science Career Track, you’ll master data science topics, have personalized career guidance, weekly calls with a data science expert, and a job guarantee.
Solved
Linux to SQL Server, authentication
Posted on 2011-09-14
http://www.easysoft.com/products/data_access/odbc-sql-server-driver/whats-new.html
>>>SQL Server 2008 Security The SQL Server ODBC driver’s Windows authentication support means that using the driver to integrate Linux/Unix with SQL Server 2008 will not compromise security best practices defined and enforced by SQL Server 2008’s Policy-Based Management. Because the SQL Server ODBC driver lets you access SQL Server from Linux/Unix by using this best practice login mode, SQL Server authentication support is not a prerequisite for our driver. Your SQL Server instance does not therefore have to vulnerable to attacks associated with this legacy authentication mode.
Does this mean that we can authenticate Linux to SQL, windows authentication? If not, is anyone aware of a workaround, that will allow me to do so?
>>>SQL Server 2008 Security The SQL Server ODBC driver’s Windows authentication support means that using the driver to integrate Linux/Unix with SQL Server 2008 will not compromise security best practices defined and enforced by SQL Server 2008’s Policy-Based Management. Because the SQL Server ODBC driver lets you access SQL Server from Linux/Unix by using this best practice login mode, SQL Server authentication support is not a prerequisite for our driver. Your SQL Server instance does not therefore have to vulnerable to attacks associated with this legacy authentication mode.
Does this mean that we can authenticate Linux to SQL, windows authentication? If not, is anyone aware of a workaround, that will allow me to do so?
4-
4
8 Comments
Active 1 day ago
Windows authentication in MSSQL uses the underlying OS authentication. Linux does not have that, AFAIK. You might be able to pass credentials in your connection for SQL Server to check against its parent Windows catalog, though.
Active 1 day ago
>>You might be able to pass credentials in your connection for SQL Server to check against its parent Windows catalog, though.
Can you elaborate, routinet? Maybe give me an example, or point me to another reference?
Can you elaborate, routinet? Maybe give me an example, or point me to another reference?
Active 1 day ago
I'm saying pass your credentials as a Windows credential, i.e., domain\user. I'm not saying it will work...just that it might. :)
With Windows authentication, SQL Server does not actually handle the authentication part. It passes it off to the Windows sub-system and relies on its response. Depending on your environment, that sub-system could be the local catalog of users, or maybe an Active Directory controller on your domain. Your problem is not authenticating with SQL Server, but authenticating with the OS it is running on.
SQL Server has an SQL authentication mode for a reason - not every computer in the world uses Windows. Microsoft's recommended practices are great in a homogenous environment, but do not really translate well once you introduce other OS platforms.
With Windows authentication, SQL Server does not actually handle the authentication part. It passes it off to the Windows sub-system and relies on its response. Depending on your environment, that sub-system could be the local catalog of users, or maybe an Active Directory controller on your domain. Your problem is not authenticating with SQL Server, but authenticating with the OS it is running on.
SQL Server has an SQL authentication mode for a reason - not every computer in the world uses Windows. Microsoft's recommended practices are great in a homogenous environment, but do not really translate well once you introduce other OS platforms.
Active 1 day ago
aaaah.... i see what you're saying. pretty much what I had feared.... no magic linux to sql pill out there yet.
that sucks
thank you routinet.
that sucks
thank you routinet.
Active 1 day ago
I've seen some material saying you can duplicate this by using Kerberos (which makes sense, I suppose), but that is well outside my skill set. Good luck!
Active 1 day ago
definitely need all the luck i can get on this one.... i am tasked to redesign the entire data model, to include, of course, the application layer security. 98% of which is non-windows, and currently coming in without any restriction at all. :-(
I'll get there.
thanks again, routinet
I'll get there.
thanks again, routinet
Active 1 day ago
Keep in mind that SQL mode is not necessarily a bad thing. It just means that proper care needs to be taken when managing the credentials. With Windows authentication, that is all handled at the OS level, which means network administrators familiar with policy get to deal with it. A DBA may or may not be in a position to know or implement those policies. With SQL mode, they must be. It does not have to be less secure than using Windows authentication.
Featured Post
Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.
One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
Join & Write a Comment Already a member? Login.
A Stored Procedure in Microsoft SQL Server is a powerful feature that it can be used to execute the Data Manipulation Language (DML) or Data Definition Language (DDL).
Depending on business requirements, a single Stored Procedure can return differe…
In this article, we will show how to detach and attach a database and then show how to repair a corrupt database and attach it, If it has some errors. We will show how to detach and attach using SSMS or using T-SQL sentences.
- Software
- Query Syntax
- SQL
- Databases
- Microsoft SQL Server 2008
- Microsoft SQL Server, Microsoft SQL Server 2005, *T-SQL
Using examples as well as descriptions, and references to Books Online, show the different Recovery Models available in SQL Server and explain, as well as show how full, differential and transaction log backups are performed
Via a live example, show how to backup a database, simulate a failure backup the tail of the database transaction log and perform the restore.
Suggested Courses
Course of the Month9 days, 20 hours left to enroll
606 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.