Validating Active Directory login from within a stored-procedure
I have an application that needs to use active directory to ensure user login is valid. The issue is that the machine is in a different domain than our AD server. I am looking at creating a clr procedure on the SQL server that is in the same domain. Then from the application execute a procedure from the sql server that is in not in the AD, this procedure will call the procedure that will house the clr function. It would pass credentials to attempt to login and return success or fail. Having issues installing the CLR code.
Any ideas would be appreciated.
Software/Hardware used:
SQL 2005
Any ideas would be appreciated.
Software/Hardware used:
SQL 2005
ASKED:
July 5, 2011 3:14 PM
UPDATED:
July 5, 2011 6:53 PM
Answer Wiki:
I assume that the users are already logging into the SQL Server with the domain credentials in question? As long as the two domains are trusted then the authentication call will work as expected. If there is no trust between them then neither idea will work, unless there's a forest trust setup or some other way for your code to be able to find the remote domain.
To see all answers submitted to the Answer Wiki: View Answer History.
No, the application is using SQL authentication. To furthur explain there are two domains, the one the application resides in, the users are not a member of that AD. The other is the domain that they are a part of. The application will require a login and passord and rather than maintain password maintenance, it was proposed that we utilize the AD login as the validation that they are authorized. They will have internal user records that specify their application rights.