835
Chapter 32: Authentication Types in SQL Server
32
FIGURE 32-2
SQL Server LoginMode registry key.Additionally, you can use PowerShell to change the Authentication mode using the SQL
Server Management Objects (SMO) as follows:$srv = new-object Microsoft.SqlServer.Management.Smo.Server
("MySQLServerInstance")
$srv.Settings.LoginMode = [Microsoft.SqlServer.Management.Smo.
ServerLoginMode]::Integrated
$srv.Alter()The next sections provide an overview of both Windows and SQL authentication in more
detail.Windows Authentication
You can use Windows authentication only where Windows Active Directory is used
for network and user authentication. SQL Server permits or denies access to a user after its
network logon credentials have been validated by a Windows Domain Controller, without
requiring a separate login name and password. This authentication type is often referred to
as Windows Integrated Mode and is considered a Trusted Authentication because SQL Server
trusts the credentials provided by Windows.In Windows authentication, all logins are created, stored, and managed by Active Directory.
Active Directory enables central management and enforcement of strong and complex
password policies, lockout, and expiration.When an instance is configured for Windows Authentication mode, SQL authentication
is disabled. The default sa (system administrator) account is still created but is
disabled.c32.indd 835c32.indd 835 7/31/2012 10:01:03 AM7/31/2012 10:01:03 AM
http://www.it-ebooks.info