|Applies To||RSA ClearTrust Server 5.5.3|
RSA Access Manager 6.0
Microsoft SQL Server 2005 Datastore
JNetDirect JDBC driver for SQL Server version 5.5
|Issue||Windows Authentication for Microsoft SQL Server Datastore|
Security audit shows cleartext passwords in the sql.conf file.
The option to encrypt the conf files and having to bring up the services
manually and entering a password is not acceptable.
The following changes allow Windows Authentication rather than SQL Server Authentication to be used without password or user entered in the sql.conf and the windows services to still be utilized.
JSQLConnect.jar file - JNetDirect JDBC driver for SQL Server version 5.5 that is supplied by RSA on the AXM 6.0 DVD. This file will reside in the AXM\ClearTrust Installation folder under the lib folder
Windows Domain User Account - Since the ClearTrust server and the SQL Server 2005 may run on different machines, this domain user account will be the account that the database is accessed with rather than the CT_ADMIN SQL Server Account. The ClearTrust services will run under this domain account and when they are started, will access the database using the domain account.
configure the jdbc_url :
The JSQLConnect.jar and JSQLTrustedAuthentication.dll files are available from RSA Customer Support. Contact Customer Support and request hotfix for RSA Access Manager 220.127.116.11
JNetDirect Technical Reference:
|Legacy Article ID||a35142|