Skip to Content

Is it possible to use Windows integrated security for connecting to SQL Server databases?

Currently to be able to connect to SQL databases in MII we are setting up connections that require accounts to be validated on the specific SQL server that you are connecting too. For other applications, we use Windows integrated security or AD groups to grant access to SQL servers, so there are no accounts maintained directly on the SQL servers. We would like to use this model with MII as well. What has to be done to enable this? We have found references to setting integratedSecurity=true and installing sqljdbc_auth.dll. We don't have JAVA expertise in house, so any detailed instructions would be helpful.

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

2 Answers

  • Sep 11, 2017 at 04:53 PM
    Add comment
    10|10000 characters needed characters exceeded

  • avatar image
    Former Member
    Oct 31, 2017 at 07:38 PM

    I had a very similar question. It seems the answer to the question is no. It is not specific to MII but it is specific to SAP Java.

    • SAPDB

    This SQL Server login is used by the SAP Java stack. Unlike ABAP work processes, Java processes do not use Windows authentication for the initial connection attempt. Instead, they read the password for this login from the secure store and connect to the SQL Server instance using the SAPDB login directly.

    How does a Java process connect to the database? Java processes do not use Windows authentication but connect using the SQL Server authentication login called SAPDB. During a connection attempt with a SQL Server login you need to provide the name of the login, SAPDB, and its password. Thus, Java processes need to know the password of the SAPDB login to connect to the database instance. This password is stored encrypted in the secure store of the Java application server. Establishing a connection to the MS SQL Server database instance therefore consists of two steps: The Java process reads and decrypts the password of the SAPDB SQL Server login from the secure store. Then, it connects to the database instance using the SAPDB login and the previously read password.

    You can refer to :

    1645041 - FAQ: Microsoft SQL Server logins and their usage in SAP environment

    Hope this helps...

    JoJo


    Add comment
    10|10000 characters needed characters exceeded