i have 3-layers architecture: client - middle tier - sql. need delegate client rights access sql server. made delegation between client - middle tier , works fine (as understand). middle tier - sql server connection on ntlm (cant changed) not support delegation. while connecting throw 401 - 0x80070005 "0x80070005 access denied. not have permission perform requested operation".
so need to impersonate mt sql delegated client account. possible?
no, need kerberos , nothing else, forget ntlm.
Comments
Post a Comment