How is the userid and password exposed on the network in SQL authentication and why doesn't this happen in Windows authentication?
Asked
Active
Viewed 67 times
1 Answers
1
In Windows authentication, SQL verifies the security token created for the user when they logged into their Windows machine, and never actually requires the password. If you connect to a remote SQL server with SQL Authentication, you have to submit a password, and you are then depemdant on the network communication to be secure.
Tim Harkin
- 190
- 1
- 4