October 26, 2009 at 2:38 am
Hi,
I have the below issue and need to your expertise/help to solve the problem
Scenario
There are two Domains of two different companies Domain: ABC and another one is Domain: XYZ, and there is a network tunnel between two companies
Developers of Company ABC used to do MSTSC/Remote Desktop to company YXZ computers and run SQL Server Management Studio [integrated Security/Windows Authentication] to perform their work.
They have AD ID created for Company XYZ.
Now they have a requirement where they want to start SQL Server Management Studio with XYZ’s AD ID from ABC Domain without using remote desktop.
I searched in net and found something as runas /netonly /user:username:domain “sqlwb.exe”
But its not working 🙁
Please let me know if you need more clarification.
Thanks in advance.
Regards,
Raj
October 26, 2009 at 10:14 pm
Just Adding More Weight .. Pushing it to top... 🙂
Is there any solution for the above.
Thanks,
Raj
October 28, 2009 at 4:36 am
I think you need to talk to your AD and Security people. You will need to use Kerberos security for SQL Server and enable an AD Trust relationship between the two domains.
Using Kerberos security is not difficult - you just need to create the Service Principal Names (SPNs) and make sure your AD settings do not prevent Kerberos being used (it is enabled by default).
Setting up the Trust relationship will most likely be a company policy thing. Either your security people will be happy to allow this or they will threaten removal of parts of your anatomy if you even think about it. If it is allowed then your AD people will have to do the work.
Original author: https://github.com/SQL-FineBuild/Common/wiki/ 1-click install and best practice configuration of SQL Server 2019, 2017 2016, 2014, 2012, 2008 R2, 2008 and 2005.
When I give food to the poor they call me a saint. When I ask why they are poor they call me a communist - Archbishop Hélder Câmara
October 28, 2009 at 6:08 am
Thanks a lot EdVassie.
Any kind of AD level changes and trusting other domain needs changes approved from top .. so i don't think its going to be get approved. 🙁
Thanks,
Raj
Viewing 4 posts - 1 through 3 (of 3 total)
You must be logged in to reply to this topic. Login to reply