Combined Adaptive Server and NT login security

Adaptive Server increases security by integrating the default Adaptive Server login process with NT security features. The resulting integrated security modes add the following conveniences for users:

Trusted connections and combined login security

Combined login security operates only over network protocols that support authenticated connections between clients and servers. Such connections are referred to as trusted connections.

Trusted connections are limited to client applications that access Adaptive Server by using the Named Pipes protocol.

NoteOther network protocols, such as TCP/IP sockets and IPX/SPX, do not support authenticated connections, so clients on these protocols are handled according to the standard Adaptive Server login mechanism.

A System Administrator must use sp_grantlogin to assign permissions to NT users and groups. Using sp_grantlogin, the System Administrator has the following additional options:

If the System Administrator does not use sp_grantlogin to assign user or group permissions, users cannot log in through trusted connections. For more information, see “Permitting trusted connections”.

NoteAdaptive Server does not permit trusted connections for NT users named “sa.” The user name “sa” is reserved for the default Adaptive Server System Administrator account.

Understanding login security modes

Adaptive Server provides the following modes for configuring login security: