Using Windows Authentication in a Distributed Deployment
When you deploy a remote SQL Server using Windows Authentication, you must change the Internet Information Services (IIS) anonymous account (default is IUSR_computer) to a domain account. Then, you must give the domain account a SQL login with the appropriate permissions to the Commerce Server run-time databases as specified in Securing Commerce Server Run-Time Databases.
Notes
- If SQL Server is local, and you are using Windows Authentication, you must create a SQL login account for the IIS anonymous account (the default is IUSR_<computer>).
- If you are using a remote SQL Server and SQL Server authentication, you do not need to give the domain account a SQL login.
The deployment scenario explained in this topic is:
- Internet Information Services (IIS) is installed on one computer.
- SQL Server databases (the Administration database and the Commerce Server run-time databases) are installed on a second computer.
- SQL Server is configured for Mixed Mode authentication (Windows Authentication and SQL Server Authentication).
- Commerce Server is configured for Windows Authentication to the SQL Server databases.
- AuthFilter is configured for Custom Authentication. For this scenario, you must change the connection string for the Administration database to SQL Server Authentication; instructions are provided in this topic.
Because you are using a remote SQL Server and Windows Integrated Security, you must change the IIS anonymous account (the default is IUSR_computer) to a domain account. You must then give the domain account a SQL Server login that has the appropriate permissions to the Commerce Server run-time databases as specified in Securing Commerce Server Run-Time Databases
Setting up a trusted connection for Business Desk users
To change the anonymous account of the site to a domain account
To assign the domain account permissions to SQL Server
To change the connection string for the Administration database to SQL Server Authentication
Copyright © 2005 Microsoft Corporation.
All rights reserved.