MS SQL Server Authentication

Within USoft in combination with MS SQL Server, you can use Windows Authentication to give multiple users access to the USoft repository account, without needing to give each of these users their own database account.

This is an important advantage for authorizing USoft users, as it is no longer necessary to create a new database login for every new application user.

To do this, you need to perform the following steps, which are further detailed below.

1.	Setup two accounts on the MS SQL Server.

One account for the USoft repository and one account for the windows user group. By allowing this windows user group access to the USoft repository, you allow ALL individual users of this windows user group access to the repository.

2.	Setup database grants using the Authorizer.

In the Authorizer, the windows user group can be granted access rights to the preferred applications and all windows user group users are granted access to the repository tables.

3.	Grant individual user access to the application.

With USoft security, you add the individual user as a member to the user application. There is no need to update the rights for an individual user, as this is performed in step two above.

To configure the MS SQL Server (with an existing repository account):

1.	In the SQL Server Enterprise Manager, create a new login for the windows user group.

•Select New Login.

•Choose Windows Authentication and fill in a Domain (for example, USOFT).

2.	Choose the Database containing the application.

3.	In the Database Access tab page activate the application database and specify a user name in the User column of that record.

NOTE: Choose a simple user name (with letters and digits) that does not contain any spaces or punctuation marks. This is the user name that will later be used for granting rights in the Authorizer.

To grant the windows user group access to the repository, you need to perform the following steps in the Authorizer.

•Add the user name chosen in SQL Server as a user in the Authorizer.

•Add this user as a member to the USoft Developer application.

•Add this user as a member to your user application.

To grant rights in the Authorizer:

1.	Choose Tools, Update User Rights from the menu bar.

The Update User Rights window appears.

2.	Complete the dialog as follows:

•Enter the Application, USD.

•Enter the user name chosen in SQL Server.

•Check the 'From conceptual file' checkbox.

•Enter the Conceptual file, usd.con.

•Click OK.

3.	Choose Tools, Update User Rights from the menu bar.

The Update User Rights window appears.

4.	Complete the dialog as follows:

•Enter the Application, your user application.

•Enter the user name chosen in SQL Server.

•Check the 'From conceptual file' checkbox, if you are running the user application from flat file.

•Enter the Conceptual file, if appropriate.

•Click OK.

To grant individual users access to the application:

1.	Choose Define, Application Users from the menu bar.

The Application Users window appears.

2.	Enter the User: "DOMAIN_NAME\username".

Save.

4.	Open the USoft Binder.

5.	In the Database tab page remove User and Password from the USoft Binder file.

•Ensure that the Owner name is set in the project Database properties.

•Ensure that the Application name is set in the Application properties.