Hi,
We have SQL Server 7.0 running on NT 4.0 ( I know we should have moved on
but that's another story).
We also have VB6 apps accessing the SQL Server using Windows authentication
.
Until now only users within our domain needed to use the apps.
There are a number of NT security groups to which we add our users depending
on their required permission levels.
However we now have a situation where users from an external domain need
access to the VB6 apps. They will also need to synchronise data using merge
replication.
Is there a way of mapping such users to our NT Security groups even though
they are members of an external domain. There will be co-operation from the
administrators of the other domain.
We would rather stick with Windows Authentication rather than Mixed Mode.
Any help greatly appreciated.
DDHi
You would need to setup trusts between the 2 domains. This is done at OS
level. Get your admins to look if it is something they really want to do. An
external company, unless it is in the same legal entity group, should not be
trusted as you have no control over their admins.
Regards
--
Mike Epprecht, Microsoft SQL Server MVP
Zurich, Switzerland
MVP Program: http://www.microsoft.com/mvp
Blog: http://www.msmvps.com/epprecht/
"Dave52" wrote:
> Hi,
> We have SQL Server 7.0 running on NT 4.0 ( I know we should have moved on
> but that's another story).
> We also have VB6 apps accessing the SQL Server using Windows authenticati
on.
> Until now only users within our domain needed to use the apps.
> There are a number of NT security groups to which we add our users dependi
ng
> on their required permission levels.
> However we now have a situation where users from an external domain need
> access to the VB6 apps. They will also need to synchronise data using mer
ge
> replication.
> Is there a way of mapping such users to our NT Security groups even though
> they are members of an external domain. There will be co-operation from th
e
> administrators of the other domain.
> We would rather stick with Windows Authentication rather than Mixed Mode.
> Any help greatly appreciated.
> DD
>|||The way I'd handle this is to create a local group on the SQL Server box tha
t
contains a global group from the remote domain. Then I'd simply give permiss
ions
inside SQL Server to this local group. For this to happen of course, there m
ust
be a trust between the domain that contains the SQL Server and the "external
"
domain that wants access to it.
HTH
Thomas
"Dave52" <Dave52@.discussions.microsoft.com> wrote in message
news:D40BC61F-A792-4442-BF6B-FF29BFAB9258@.microsoft.com...
> Hi,
> We have SQL Server 7.0 running on NT 4.0 ( I know we should have moved on
> but that's another story).
> We also have VB6 apps accessing the SQL Server using Windows authenticati
on.
> Until now only users within our domain needed to use the apps.
> There are a number of NT security groups to which we add our users dependi
ng
> on their required permission levels.
> However we now have a situation where users from an external domain need
> access to the VB6 apps. They will also need to synchronise data using mer
ge
> replication.
> Is there a way of mapping such users to our NT Security groups even though
> they are members of an external domain. There will be co-operation from th
e
> administrators of the other domain.
> We would rather stick with Windows Authentication rather than Mixed Mode.
> Any help greatly appreciated.
> DD
>
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment