[英]SSMS Active Directory Authentication with Azure SQL DB
I am attempting to log into an Azure SQL Database using SSMS.我正在尝试使用 SSMS 登录 Azure SQL 数据库。 I need to be able to log into the database with Active Directory Integrated Authentication.
我需要能够使用 Active Directory 集成身份验证登录到数据库。 When attempting to login:
尝试登录时:
I receive this error: Failed to authenticate the user NT Authority\\Anonymous Logon in Active Directory (Authentication=ActiveDirectoryIntegrated).我收到此错误:无法在 Active Directory 中验证用户 NT Authority\\Anonymous Logon (Authentication=ActiveDirectoryIntegrated)。 Error code 0xCAA90002;
错误代码 0xCAA90002; state 10 WSTrust response does not have recognized SAML assertion.
状态 10 WTrust 响应没有识别 SAML 断言。 (.Net SqlClient Data Provider)
(.Net SqlClient 数据提供程序)
The following are true:以下是正确的:
Any ideas?有什么想法吗? Thanks.
谢谢。
This issue is with the AD Syncing options.此问题与 AD 同步选项有关。 In my environment, AD is not syncing passwords into the tenant.
在我的环境中,AD 不会将密码同步到租户中。 This prevents AD Integration Authentication and AD Password Authentication.
这可以防止 AD 集成身份验证和 AD 密码身份验证。 The only authentication that works in this instance is AD Universal Authentication.
在此实例中唯一有效的身份验证是 AD 通用身份验证。
This may be due to the old API of ADALSQL.dll that is used by SSMS for Active Directory password.这可能是由于 SSMS 用于 Active Directory 密码的 ADALSQL.dll 的旧 API。 The fact that Active Directory Universal (which uses newer API from ADAL.net) works indicates the issue is in the AD library, not SQL.
Active Directory Universal(使用来自 ADAL.net 的较新 API)工作的事实表明问题出在 AD 库中,而不是 SQL 中。
I had the same error message, and it turned out to be caused by a password expiry.我有同样的错误信息,结果是密码过期引起的。 As soon as I renewed the password, the error message disappeared.
我一更新密码,错误信息就消失了。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.