This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 74%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
This is my connection string
Data Source =server;Initial Catalog=Database;Trusted_Connection=True;MultipleActiveResultSet=true;Integrated Security=SSPI;
After establishing the connection string I am trying to test connection and here instead of it using my id to check whether I have access to the server I need it to check for the service id I am providing to test and establish connection
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 4%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EQM%3C/text%3E%3C/svg%3E)
Hi @Adithyan
What is your positioning for "different users"? And what is the purpose of your "ServiceID"?
If you can share more details and requirements, I can help you solve the problem more precisely.
Best Regards
Qi You
I am trying to make an application that lets users to write a query to run but instead of directly running the query through SSMS you enter it in my application and then we are validating then executing the query. So here instead of providing all the users access to the server I am trying to assign a service id for that particular server that has all the access and if a user tries to enter the query for that server insetead of using their user id and check for windows authentication, I want the application to impersonate as the service id then check windows authentication then establish connection. Hope I am clear
Regards
Adithyan
Trusted_Connection=True
That means the current Windows account is used to logon to SQL Server and if you e.g. have a SQL Server-Agent job, the the service account of the Agent is used. So run the job to see if it works = testing
Integrated Security=SSPI;
That's the same as aTrusted_Connection, so redundant.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 61%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBS%3C/text%3E%3C/svg%3E)
if you create a web application, the app pool account is the account used to connect to sqlserver. if you are writing a desktop application, then you will need to impersonate the service account. this will require the user have the impersonate permission. your app will need the service account name and password.
[DllImport("advapi32.dll", SetLastError = true, CharSet = CharSet.Unicode)]
public static extern bool LogonUser(String lpszUsername, String lpszDomain, String lpszPassword,
int dwLogonType, int dwLogonProvider, out SafeAccessTokenHandle phToken);
...
const int LOGON32_PROVIDER_DEFAULT = 0;
//This parameter causes LogonUser to create a primary token.
const int LOGON32_LOGON_INTERACTIVE = 2;
// Call LogonUser to obtain a handle to an access token.
SafeAccessTokenHandle safeAccessTokenHandle;
bool returnValue = LogonUser(
serviceAccountUserName,
domainName,
password,
LOGON32_LOGON_INTERACTIVE, LOGON32_PROVIDER_DEFAULT,
out safeAccessTokenHandle);
WindowsIdentity.RunImpersonated(SafeAccessTokenHandle, () =>
{
// run sql queries here
});
Hello,
I am getting an error in this line from this code when I try to replicate it. I am getting an error on the word public saying "The modifier 'public' is not valid for this item". I found another resource where they use internal instead of public but still same error. I am not sure on how to fix this
public static extern bool LogonUser(String lpszUsername, String lpszDomain, String lpszPassword,
int dwLogonType, int dwLogonProvider, out SafeAccessTokenHandle phToken);
Hi @Adithyan
If you use an interface to wrap and the methods inside your interface are also 'public', it will cause this problem.
Such as:
public interface test
{
public static extern bool LogonUser(String lpszUsername, String lpszDomain, String lpszPassword,
int dwLogonType, int dwLogonProvider, out SafeAccessTokenHandle phToken);
public
}
Change to
public interface test
{
static extern bool LogonUser(String lpszUsername, String lpszDomain, String lpszPassword,
int dwLogonType, int dwLogonProvider, out SafeAccessTokenHandle phToken);
}
Or maybe you write a method within a method, which can also cause this problem.
Best Regards
Qi You
Hi @Adithyan
According to your description, I have a scheme:
1.In order to achieve the function of user input query string, we can add a TextBox to get the input string.
2.Depending on your authentication needs, we can put "UserID" and "ServiceID" in a table in a database. We first enter "UserID" and "ServiceID" to match. At the same time, we put "ServiceID" and "ServiceName" in a database table. If we verify successfully in the previous step, we can get "ServiceName" through "ServiceID" here. If the validation fails, "Fail" is displayed directly.
3.Finally, we define "ServiceName" in a string, and then use the query string entered earlier in "TextBox" to complete the operation using the database.
4.Finally, we can use the "GridView" to get the database query results.
Code:
public partial class SQLTest : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{
}
protected void Button1_Click(object sender, EventArgs e)
{
string connString1 = "Data Source=localhost;Initial Catalog=TestSQL;Integrated Security=TRUE";
using (SqlConnection conn = new SqlConnection(connString1))
{
conn.Open();
SqlCommand sqlcom = new SqlCommand("select count(*) from dbo.Service where UserID = '"+TextBox2.Text+ "' AND ServiceID='"+TextBox3.Text+"' ", conn);
int count = Convert.ToInt32(sqlcom.ExecuteScalar());
if (count>0)
{
TextBox4.Text = "Success";
string connString2 = "Data Source=localhost;Initial Catalog=TestSQL;Integrated Security=TRUE";
using(SqlConnection conn1=new SqlConnection(connString2))
{
conn1.Open();
SqlCommand sqlcom1 = new SqlCommand("select ServiceName from dbo.ServiceName where ServiceID='" + TextBox3.Text + "'", conn1);
string DatabaName=Convert.ToString(sqlcom1.ExecuteScalar());
TextBox1.Text= DatabaName;
string connString3 = "Data Source="+DatabaName+";Initial Catalog=TestSQL;Integrated Security=TRUE";
using (SqlConnection conn2 = new SqlConnection(connString3))
{
conn2.Open();
SqlCommand sqlcom2 = new SqlCommand(TextBox1.Text, conn2);
SqlDataReader sdr = sqlcom2.ExecuteReader();
GridView1.DataSource = sdr;
GridView1.DataBind();
}
}
}
else
{
TextBox4.Text = "Fail";
}
}
}
}
<body>
<form id="form1" runat="server">
<div>
<asp:label ID="Label1" Text="Please Enter SqlQueryString:" runat="server"></asp:label>
<asp:TextBox ID="TextBox1" runat="server"></asp:TextBox>
</div>
<div>
<asp:label ID="Label2" Text="Please Enter UserID" runat="server"></asp:label>
<asp:TextBox ID="TextBox2" runat="server"></asp:TextBox>
<asp:label ID="Label3" Text="Please Enter ServiceID" runat="server"></asp:label>
<asp:TextBox ID="TextBox3" runat="server"></asp:TextBox>
</div>
<div>
<asp:Button ID="Button1" runat="server" Text="Search" OnClick="Button1_Click" />
</div>
<div>
<asp:label ID="Label4" Text="Result" runat="server"></asp:label>
<asp:TextBox ID="TextBox4" runat="server"></asp:TextBox>
</div>
<div>
<asp:GridView ID="GridView1" runat="server" text-align="center" style="margin: 0px auto;Font-Size:20px; border:3px;" ></asp:GridView>
</div>
</form>
</body>
Database data
Result:
Best regards,
Qi You
If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.