You're using Integrated Security. Are you sure that the account used by the webserver has access to the remote SQL Server? What account is used by the web server?


Imar
---------------------------------------
Imar Spaanjaars
Everyone is unique, except for me.

I'm trying to run the web site off my own PC, so I'm guessing this is the ASPNET account? IIS is using the IUSR_ account?

Thanks for your help!

Paul

Most likely. That is, when you run it from IIS the ASPNET account is used )on XP). Otherwise, when you're using Cassini, it's your own account.

However, you're using integrated security, so the ASPNET account, local to your machine, is not known by the database server (provided it's a different machine).

Did you look at the article on my website I linked to earlier? Scenario 3 describes how you should handle this.

Cheers,

Imar
---------------------------------------
Imar Spaanjaars
Everyone is unique, except for me.
Author of ASP.NET 2.0 Instant Results and Beginning Dreamweaver MX / MX 2004
Want to be my colleague? Then check out this post.

Is it right that integrated security won't work over the internet? Would I be better advised to use sql server authentication instead? If I can get this to work, we'd be looking for internet access.

Sorry to be bombarding you with questions!

Correct. However, the Internet does not mean the network. So, this may still work in a network environment. With the web server at an entirely different location than the database server?

Or with the webserver and database server at one location and you, the client, at another? In the first scenario, you need SQL authentication and loads of security stuff to guard the sql server.

In the latter case, this shouldn't be a problem. You can access the website anonymously, or with basic authentication. However, the webserver can still use the ASPNET account to access SQL Server if it's still on the same machine.

I am making a lot of assumptions, so maybe you should describe the current and future setup in more detail. Either way, the Appointment Booking app can be used in all the scenarios I described.

Cheers,

Imar
---------------------------------------
Imar Spaanjaars
Everyone is unique, except for me.
Author of ASP.NET 2.0 Instant Results and Beginning Dreamweaver MX / MX 2004
Want to be my colleague? Then check out this post.

Most likely the webserver and database server will be at the same location, with clients at various other sites.

I modified the connection string to use SQL authentication and am now able to at least connect to the database! I've hard coded the user name and password in the connection string though, so of course it doesn't match up to the login details on the web site.

At least I seem to be making progress!

Thanks for the advice, I really appreciate it

Paul

In that case, you can use integrated security for authentication between the web server and the database. Depending on a lot of factors, using SQL authentication in that scenario may still be an easier or better solution. But, if integrated security is possible, I'd go for that. This doesn't have to be a problem, does it? You can easily allow anonymous connections, while the webserver itself can still authenticate to the database. Consider the P2P site for example; it uses an IIS webserver with ASP. The webserver connects to a SQL server database and uses either integrated security or SQL Server authentication (don't know which one, but it doesn't really matter).

However, you and I can connect to the site, although we're not known at the database server. The webserver will handle that for us. So, wether we're logged in or not. we can still see stuff from the database, because the webserver has an account at the database that allows it to retrieve data.

Imar
---------------------------------------
Imar Spaanjaars
Everyone is unique, except for me.
Author of ASP.NET 2.0 Instant Results and Beginning Dreamweaver MX / MX 2004
Want to be my colleague? Then check out this post.

Imar,

Many thanks for your help, I've now got a connection to the server using sql authentication. When I have more time I will try and switch to integrated security as I think it would be the better option and we might put the web server on the database machine, but current set up will do for demo purposes.

Now I just have to work out why none of the user accounts can log in and email authentication doesn't work!

thanks again

regards

Paul

Maybe because there's a mismatch in the application names used in the database?

Check out the ASP.NET tables like aspnet_Applications, aspnet_Roles and so on. Maybe you have more than one application and have your roles connected to another application than your user accounts. That way, it looks like you have some users in some roles, but in reality they may not apply to the current application.

Just look at the ApplicationId column for all relevant tables and see of they align...

Imar
---------------------------------------
Imar Spaanjaars
Everyone is unique, except for me.
Author of ASP.NET 2.0 Instant Results and Beginning Dreamweaver MX / MX 2004
Want to be my colleague? Then check out this post.

Checked the tables out, everyrhthing seems to be allright, the user accounts are also working now, it's only trying to create new accounts thats the problem. When ssaving, get the following error:

"Unable to read data from the transport connection: net_io_connectionclosed."

Thanks Imar!