Is it possible to connect to a SQL Server data source using SSPI (i.e., NT integrated login password)? Scanning the documents, this forum, the BO forum, and googling in general hasn’t turned up any answers
When I tried to set up a SQL Server 2000 datastore, DI wouldn’t let me leave the user name field blank. In other application systems, leaving the username and password blank generally indicates to use SSPI. Is there some other indicator, or is not possible in general?
I worked around the problem by setting up an ODBC DSN and connecting thru that, but I’d like to be able to go directly to the server without the intervening layer.
I understant your problem and I’m not sure it’s possible to do.
Anyway you should understand that the NT login that will be used will be the one running the BODI’s Job_Server windows service (BUILT-IN\SYSTEM account as default) so you’re job will execute queries on the database with DBO level rights … is that really what you want ?
You should probably re-design you’re security policies to avoid that kind of issues.
Create a specific user account for each application and a specific role for each set of resources (billing, customers_mangement, customers_listing, …) therefore you’ll be able in a very few clicks to set effective permissions that will avoid you bodi process to be able (by error) to change values that are not dedicated to him. Worse, you can get into situation where your query performances can go down because you will be locking a table for a normal user because you’re priority level will be higher.
It is not possible to connect to a DI Datastore in versions prior to DI XI (11). In 11.0.0 you can set an option in the datastore that would allow you to connect to a datastore using NT Authentication. In 11.0.1 you can have your repository use NT authentication.