asp.net – SQL Server集成身份验证模式

ASP.NET applications do not impersonate by default. As a result,when they use Windows authentication to connect to SQL Server,they use the Web application’s process identity. With this approach,your front-end Web application authenticates and authorizes its users and then uses a trusted identity to access the database. The database trusts the application’s identity and trusts the application to properly authenticate and authorize callers. This approach is referred to as the trusted subsystem model.

The alternative model referred to as the impersonation/delegation model uses the original caller’s Windows identity to access the database. This approach requires that your ASP.NET application is configured to use impersonation. See the section “Impersonation / Delegation vs. Trusted Subsystem” in this document.

因此,根据您的配置方式,它可以使用应用程序池帐户(不使用模拟时)或使用Web应用程序的登录用户帐户(使用模拟时).

有关假冒信息,请参阅http://msdn.microsoft.com/en-us/library/134ec8tc.aspx.