?
Solved

Using network credentials to log on to other applications

Posted on 2014-09-11
10
Medium Priority
?
191 Views
Last Modified: 2014-09-21
Experts,

We have applications that require username and ID to access certain databases.  The environment is changing now that the userid and password will now be the same as the username and password that is used to get into the system.

Is there a way for the system to use these credentials without them having to be stored somewhere which now takes the security away from others who may have access to your machine retrieving your password.
0
Comment
Question by:morinia
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
10 Comments
 
LVL 20

Expert Comment

by:strivoli
ID: 40318796
Some applications might use the same credentials used to access the Windows client. This is called "Pass-Through Authentication". Example DOMAIN\User1 logs in to the computer called CLIENT1. When User1 opens Application1 the same credentials are used to run the Application1. If this is what you do not want, either:

a. Disable Application1's Pass-Through Authentication, or
b. Create more Users that can access the CLIENT1.
0
 

Author Comment

by:morinia
ID: 40318965
Pass the authentication is what I want to use.  The question is how to set that up on an access database that is currently pulling in the password and ID from a file stored on each user's desktop in the user file.

This was not too bad because it was only the ID and password for one table. However putting network credentials on your machine to me is dangerous. I am trying to find out how this application can use pass thru authentication.
0
 
LVL 42

Expert Comment

by:kevinhsieh
ID: 40319541
Please see this article for differences between SQL and Windows authentication for accessing SQL databases. It explains why Windows authentication is more secure.

http://msdn.microsoft.com/en-us/library/ms144284.aspx
0
Building an interactive eFuture classroom

Watch and learn how ATEN provided a total control system solution including seamless switching matrix switch, HDBaseT extenders, PDU, lighting control to build an interactive eFuture classroom.

 

Author Comment

by:morinia
ID: 40319622
Kevin,

I understand why Windows Authentication is more secure.  That is not the issue I have.  My area has "self-made" jobs that run against the servers and have been automated.  Currently the userid and password are being retrieived from the user's personal computer in a file.  We each had individual accounts with our own individual password and ID.

We are now as a company changing where our Windows ID and Password will be used to get us into all Servers.  My area wants us to put the windows ID and password in the same location that we previously put the individual ID and password so our automated jobs can run.

I am contesting this saying that the Windows/Network password should nebvr be stored anywhere because somone with admin access to your PC can get access to everything (even log in as you).

I am looking as to how in our database the network id and password can be retrieved without being hardcoded and visible anywhere.

I am looking for alternatives to give my management so we don't have to put our passwords where they are visible.
Most applications "***********" password so even if you type it in, it is not visible.
0
 
LVL 42

Expert Comment

by:kevinhsieh
ID: 40321467
You shouldn't need to store the credentials anywhere if you are running the jobs from your user session. Anything you run as you inherits your access tokens and hence would have the same access to SQL integrated authentication without the need to input credentials. If you ran from a scheduled task you would need to save.credentials when creating the task, but the task itself would have the same access as whatever account was used for the saved credentials.
0
 
LVL 3

Expert Comment

by:Stef95
ID: 40322816
Delete them from windows crenditals manager
0
 

Author Comment

by:morinia
ID: 40324423
Is there a way to hide the password with ********** like some applications.   This is an access application that we use to run our automated jobs that seemingly have to reF the userid and password from a table.  

This is why I was hoping to find a way to pass the credentials without putting them in the database.
0
 
LVL 42

Expert Comment

by:kevinhsieh
ID: 40329571
Can't Access just use an ODBC connection that uses Windows authentication?
0
 

Author Comment

by:morinia
ID: 40330208
kevinhsieh,

Can you give me an example of a connection where just the ODBC Driver name used.?  All of the examples I have ask for UID and PW also/
0
 
LVL 42

Accepted Solution

by:
kevinhsieh earned 2000 total points
ID: 40331465
When you setup an ODBC conenction to SQL server and use "With Windows NT authentication using network login ID" it doesn't ask for a username or password, because it uses the credentials of the current user.
0

Featured Post

Get free NFR key for Veeam Availability Suite 9.5

Veeam is happy to provide a free NFR license (1 year, 2 sockets) to all certified IT Pros. The license allows for the non-production use of Veeam Availability Suite v9.5 in your home lab, without any feature limitations. It works for both VMware and Hyper-V environments

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Assume you have an outside contractor who comes in seasonally or once a week to do some work in your office, but you only want to give him access to the programs and files he needs and keep all other documents and programs private. Can you do this o…
In this Micro Tutorial viewers will learn how to use Boot Corrector from Paragon Rescue Kit Free to identify and fix the boot problems of Windows 7/8/2012R2 etc. As an example is used Windows 2012R2 which lost its active partition flag (often happen…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question