Dela via


DBPROP_AUTH_PERSIST_SENSITIVE_AUTHINFO

Property group: Initialization

Property set: DBPROPSET_DBINIT

Type: VT_BOOL

Typical R/W: R/W

Description: Persist Security Info

Value

Meaning

VARIANT_TRUE

The data source object is allowed to persist sensitive authentication information such as a password along with other authentication information.

VARIANT_FALSE

The data source object cannot persist sensitive authentication information.

If DBPROP_AUTH_PERSIST_SENSITIVE_AUTHINFO is set to VARIANT_FALSE at the time the data source object is initialized, the data source object cannot persist sensitive authentication information. Furthermore, requesting properties that contain sensitive authentication information, such as a password, returns some default value instead of the actual password.

Your ability to view sensitive data depends on the state of initialization of the data source object. The following table summarizes the different states of initialization, in order, and how sensitive information is viewed.

Initialization state of data source object

How sensitive information is viewed

1. Not yet initialized

Sensitive information can be obtained using IDBProperties::GetProperties, regardless of the setting of DBPROP_AUTH_PERSIST_SENSITIVE_AUTHINFO.

2. Initialized

Sensitive information can only be obtained if DBPROP_AUTH_PERSIST_SENSITIVE_AUTHINFO is set to TRUE.

3. Uninitialized

Sensitive information set before uninitialization still can only be seen with a setting of TRUE. Any sensitive information set after uninitialization will be seen regardless of the setting for DBPROP_AUTH_PERSIST_SENSITIVE_AUTHINFO.

4. Re-initialized

The setting for DBPROP_AUTH_PERSIST_SENSITIVE_AUTHINFO controls whether sensitive information is viewable.

Before the data source object is initialized for the first time, sensitive information can be obtained by calling IDBProperties::GetProperties and can be persisted, regardless of the setting of DBPROP_AUTH_PERSIST_SENSITIVE_AUTHINFO. For this reason, consumers should not pass around uninitialized data source objects.

See Also

Reference

Properties (Alphabetical)