Click here to view and discuss this page in DocCommentXchange. In the future, you will be sent there automatically.

SQL Anywhere 17 » SQL Anywhere Server - Database Administration » Database connections

Authentication mechanisms

You can set up your database to allow users to connect using an external authentication mechanism such as LDAP, PAM, Kerberos, or Microsoft Windows integrated login.

The standard or default method to connect to a database is to provide a user ID and password that is known to the database.

In addition to standard authentication, the database server supports the following authentication mechanisms:

  • Microsoft Windows integrated login
  • LDAP user authentication
  • PAM user authentication
  • Kerberos user authentication

These authentication mechanisms are convenient for users and administrators as they permit a single security system for database, operating system, and network security. Other advantages include:

  • The user does not need to provide the database user ID and password to connect to the database.
  • The authenticated user is mapped to a database user ID so the user name and password do not have to match the database user ID and password.
  • Multiple users can be mapped to a single database user ID.
  • Some authentication mechanisms permit entire groups to be mapped to a single database user ID.

These authentication mechanisms offer the convenience of a single security system, but there are important security concerns that database administrators should be familiar with, such as unrestricted database access and copies of database files. Ensure that you are aware of these concerns and how to address them.