Thursday, May 03, 2012 6:54 PM
Is it possible for users from 2 different windows networks to connect to SQL Server using windows authentication? I am using Windows 2003 and SQL Server 2005 SP4 Standard Edition.
For eg: My company AAA got recently acquired by company BBB. Both companies have 2 separate networks with users as follows:
AAA\User1, AAA\User2 etc... & BBB\User1, BBB\User2 etc...
I know by default when I install SQL Server it sees the local network and allows me to add users belonging to AAA network. How can I add users from the BBB network to my SQL Server that is on AAA network? I guess the bigger question should be does SQL Server let me configure more than one LDAP server at a time?
Thursday, May 03, 2012 8:11 PM
can you configure domain AAA and BBB to be trusted domain ?
or you can use Kerberos
see a similar thread SQL Server through trusted domains
Please use Mark as Answer if my post solved your problem and use Vote As Helpful if a post was useful.
Thursday, May 03, 2012 8:55 PMYes it has been configured to be trusted domains. Users from the BBB network can ping and connect to SQL Server on the AAA network using SQL Server authentication. But ultimately it needs to be changed to use windows authentication. Can this be done?
Friday, May 04, 2012 8:51 AMModerator
Yes it could be done.
Please check the following items first:
1. Check if you can ping to BBB from AAA.
2. Add the domain group to your SQL Server logins. We need to look at the rights the users are getting through the trust. You should have a Global group in AAA and put the BBB users in it. Then give rights in SQL to your Global group. Also, make sure they've got windows rights on the SQL box as windows authentication in SQL will check windows rights before checking SQL rights.
Please remember to mark the replies as answers if they help and unmark them if they provide no help.
- Marked As Answer by Iric WenModerator Thursday, May 10, 2012 8:56 AM