Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
Muzokh
Starting Member
21 Posts |
 Posted - 2011-12-11 : 20:20:25
|
| Hi allI have a query, I heard that Windows authencation is recommended in SQL Server but I saw a presentation and on that presentation its clearly mentioned that SQL Server authentication is more secure ans recommended because in case of sql server authentication useer has to give 2 passwords, first one is windows password and the second one is sql server password, so SQL Server authentication is more secure, please suggest.Thanks |
|
|
visakh16
Very Important crosS Applying yaK Herder
52326 Posts |
Posted - 2011-12-12 : 00:44:18
|
| this is from BOLWhen a user connects through a Windows user account, SQL Server validates the account name and password using the Windows principal token in the operating system. This means that the user identity is confirmed by Windows. SQL Server does not ask for the password, and does not perform the identity validation. Windows Authentication is the default authentication mode, and is much more secure than SQL Server Authentication. Windows Authentication uses Kerberos security protocol, provides password policy enforcement with regard to complexity validation for strong passwords, provides support for account lockout, and supports password expiration. A connection made using Windows Authentication is sometimes called a trusted connection, because SQL Server trusts the credentials provided by Windows. Security Note When possible, use Windows Authentication ------------------------------------------------------------------------------------------------------SQL Server MVPhttp://visakhm.blogspot.com/ |
 |
|
|
|
|
|
|
|
Which authencation mode is more secure