BACKGROUND:
I’m currently handling duties of database administrator, alongside my other work. My programming days are far behind me (Fortran IV, anyone? :D), so I’m not up-to-date in that area.
We have a number of applications purchased from software companies for various aspects of our business. When a database back-end is required (usually) for the application, it goes on our central MS-SQL server. We’re pretty much a Microsoft shop, so all apps are Windows compatible and we use active directory accounts.
We are trying to move to all integrated Windows authentication, using Windows domain accounts for communication between servers (e.g., web server and database server for web applications) and between clients and servers (e.g., desktop app and database server for thick clients). Many vendors have no problems with this.
Other vendors, on the other hand, seem to believe this is tremendously difficult, nay, impossible to achieve. I’m in an ongoing tussle with several companies over this issue at the moment.
For instance, one company that said we could use a domain account between web server and db server, both in standard product documentation and in reply to specific questions we asked, now says we have to use a SQL server login, because the windows auth only works when web server and db server are on the same box because we’re using SQL 2005. :rolleyes: Another vendor has supposedly been working on a solution for two years, with no end in sight.
QUESTION FOR THE TEEMING MILLIONS:
Are we being unreasonable in our expectations? Is this really that difficult to incorporate into software? Or are these companies just giving us the run-around?
I come to you because I’m at the hair-pulling point with some of these guys. If we need to change expectations, I need some info to back up why. If not, I need some ammo to tackle the vendors with. I’m counting on you, O Teeming Millions.
Any insight that database or application developers can give me, or even pointers to pertinent information available elsewhere, would be very much appreciated.