Validating Active Directory login from within a stored-procedure

35 pts.
Tags:
Active Directory
Active Directory security
CLR Active Directory
Stored Procedures
I have an application that needs to use active directory to ensure user login is valid. The issue is that the machine is in a different domain than our AD server. I am looking at creating a clr procedure on the SQL server that is in the same domain. Then from the application execute a procedure from the sql server that is in not in the AD, this procedure will call the procedure that will house the clr function. It would pass credentials to attempt to login and return success or fail. Having issues installing the CLR code.

 Any ideas would be appreciated.

 



Software/Hardware used:
SQL 2005
ASKED: July 5, 2011  3:14 PM
UPDATED: July 5, 2011  6:53 PM

Answer Wiki

Thanks. We'll let you know when a new response is added.

I assume that the users are already logging into the SQL Server with the domain credentials in question? As long as the two domains are trusted then the authentication call will work as expected. If there is no trust between them then neither idea will work, unless there’s a forest trust setup or some other way for your code to be able to find the remote domain.

Discuss This Question: 1  Reply

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • Joetig
    No, the application is using SQL authentication. To furthur explain there are two domains, the one the application resides in, the users are not a member of that AD. The other is the domain that they are a part of. The application will require a login and passord and rather than maintain password maintenance, it was proposed that we utilize the AD login as the validation that they are authorized. They will have internal user records that specify their application rights.
    35 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following