Venafi Trust Protection Platform
Windows Authentication with Microsoft SQL Database causes confusion from time to time. This article describes how using Windows Authentication affects behavior of Venafi Trust Protection Platform.
If we are using Microsoft SQL with Windows Authentication, it is important to understand the following:
- Venafi Services will run as the account defined for database connection during Configuration Wizard (VCC).
- Venafi IIS Application pools will run as the account defined for database connection during Configuration Wizard (VCC).
- When using WinAdmin, Venafi Control Center or Venafi Updater the current Windows user’s credentials are passed through for the database connection. This means all users that that have to use WinAdmin need to have datareader, datawriter and execute* rights to the database.
*Execute applies to TPP 15.1 and above.