SQL Server Authentication

E277020

SQL Server Authentication is a SQL Server login method that uses credentials stored and validated by the database engine itself rather than relying on Windows accounts.

All labels observed (1)

Label Occurrences
SQL Server Authentication canonical 2

How this entity was disambiguated

Statements (49)

Predicate Object
instanceOf SQL Server login method
database authentication mechanism
authenticates SQL Server logins
canBeAuditedBy SQL Server Audit
login auditing
canBeCreatedBy CREATE LOGIN statement
canBeEnabledIn SQL Server instance properties
canBeManagedBy ALTER LOGIN statement
canBeRestrictedBy database roles
server roles
canBeUsedOver encrypted connections
unencrypted connections
canBeUsedWith contained database users with passwords
configuredVia SQL Server Management Studio
sp_configure
consideredLessSecureThan Active Directory
surface form: Windows Authentication
contrastedWith Integrated Security
Active Directory
surface form: Windows Authentication
credentialScope SQL Server instance level
defaultState disabled on new secure installations (Windows-only mode)
doesNotRequire Windows account
loginInformationStoredIn sys.server_principals
sys.sql_logins
notRecommendedFor environments where Windows Authentication is possible
passwordHashingAlgorithm SHA-1 (older versions)
SHA-512 (newer versions)
recommendedFor legacy applications that require SQL logins
requires enabling SQL Server and Windows Authentication mode
securityRisk password exposure over network if not encrypted
password reuse across applications
storesCredentialsIn SQL Server
surface form: SQL Server system catalog
storesPasswordAs hash
subjectTo SQL Server password policy enforcement options
password policy settings at the Windows level when enforced
supports application connection strings with user id and password
mixed mode authentication
supportsEncryptionWith TLS
supportsFeature account lockout
password complexity requirements
password expiration
password policies
usedBy SQL Server
surface form: Microsoft SQL Server
usedFor applications that cannot use Windows Authentication
cross-platform applications
non-domain clients
usedIn connection strings with Integrated Security set to false
uses login name
password
validatedBy SQL Server
surface form: SQL Server Database Engine

How these facts were elicited

Referenced by (2)

Full triples — surface form annotated when it differs from this entity's canonical label.

SQL Server Management Studio supportsAuthentication SQL Server Authentication
SQL Server Integration Services supportsSecurityFeature SQL Server Authentication