Configuring integrated security

If you are running Content Delivery as a .NET Web application or as a Windows Service and your database is Microsoft SQL Server, you can use integrated security.

Before you begin

To use validators you need to install Hotfix rollup SDL Tridion 2011 SP1-2.

About this task

Integrated security allows you to log the user under which the Content Delivery process is running automatically onto the Content Data Store rather than configuring credentials in the Storage layer Configuration file.

Procedure

  1. If you are running Content Delivery as a .NET Web application, open IIS and change your Application Pool to run on an specific account.
  2. Open cd_storage_conf.xml located in the config\ subdirectory of your Content Delivery root location in a plain-text editor or XML editor.
  3. In your configured Storage element:
    1. Comment out the name and password properties:
      <!--Property Name="user" Value="sa" />
      <Property Name="password" Value="tridion" /-->
    2. Add the following property:
      <Property Name="integratedSecurity" Value="true" />
    The following is an example of a Storage element configured for integrated security:
    <Storage Type="persistence" Id="msSqlStorage" dialect="MSSQL" Class="com.tridion.storage.persistence.JPADAOFactory">
    <Pool Type="jdbc" Size="100" MonitorInterval="60" IdleTimeout="120" CheckoutTimeout="120" />
    <DataSource Class="com.microsoft.sqlserver.jdbc.SQLServerDataSource">
      <Property Name="serverName" Value="localhost" />
      <Property Name="portNumber" Value="1433" />
      <Property Name="databaseName" Value="Tridion_Broker" />
      <Property Name="integratedSecurity" Value="true" />
      <!--Property Name="user" Value="sa" />
      <Property Name="password" Value="tridion" /-->
    </DataSource>
    </Storage>
  4. Save and close the cd_storage_conf.xml file.
  5. If Content Delivery is running as a Web application, restart the Web application by performing iisreset.
  6. Use sqljdbc_auth.dll file in your MS SQL Server JDBC Driver installation to set up a JVM argument.
  7. Configure the location of sqljdbc_auth.dll as a JVM parameter, for example:
    • -Djava.library.path=C:\Microsoft SQL Server JDBC Driver 3.0\sqljdbc_3.0\enu\auth\x86 or
    • -Djava.library.path=C:\Microsoft SQL Server JDBC Driver 3.0\sqljdbc_3.0\enu\auth\x64.