Supportability of non AD active cluster for SQL server 2012? RRS feed


  • Dear KiranSHoli,

    The above message should be true.

    Windows authentication will select one from two protocols, NTLM and Kerberos, when using Active Directory detached Cluster, the cluster name objects (CNOs) and Virtual Computer Objects (VCOs) are created in Domain Name System (DNS).

    In this scenario, communication would continue to use Kerberos for authentication, however, the authentication of the CNO would be done using NTLM authentication. That's to say, Kerberos lost its original meaning. As a result, all Cluster roles that need Kerberos Authentication use of AD-detached cluster is not recommended.

    In the above description, Fileshare uses Kerberos authentication for SMB, as a result, it is not recommended. The same for SQL Server, SQL Server Windows authentication will use Kerberos authentication as preferred, as a result, it is also not recommended to use Windows authentication in SQL Server.

    Best Regards,


    MSDN Community Support
    Please remember to click "Mark as Answer" the responses that resolved your issue, and to click "Unmark as Answer" if not. This can be beneficial to other community members reading this thread. If you have any compliments or complaints to MSDN Support, feel free to contact

    • Marked as answer by KiranSHoli Wednesday, June 13, 2018 8:16 AM
    Wednesday, June 13, 2018 7:59 AM