The following components need to be configured to enable the K2.net 2003 Workspace web service to use Windows Integrated authentication to connect to the SQL server

Application Pool

1. Open Internet Information Services (IIS) Manager, and determine under which application pool (the default is ".Default Web Site > K2V3 >. ") the K2.net 2003 Workspace web service runs:
   • Expand the Local Computer node
   • Then, expand the "Web Sites" node
   • Expand the web site where K2.net Workspace web service has been installed (usually "Default Web Site"
   • Expand the "K2V3" site
   
   • Right-click on the "WorkspaceService" node and select "Properties". The application pool will be listed in the "Virtual Directory" tab
   
   • Click "Cancel" to close this dialog box
2. Locate the "Application Pools" node, right-click on the pool noted above and select "Properties"
3. In the "Identity" tab, click the "Configurable" radio button and enter the service account name and password. In the example shown below, the service account name is "K2WSpace" and the domain name is K2Train
   
   • Click "OK" and when prompted, re-enter the password
   • Click "OK" again to complete the process
4. Stop and Start the application pool. It is also recommended that you restart IIS.
    

   Important: The account that starts the application pool has to be added to the IIS_WPG group before it is allowed to start a process. If not, the application pool will fail to start and the following error message will be displayed:

   
   The account will also need "Modify" permissions on the following directories:
   • <%SystemRoot%>Temp
   • <%SystemRoot%>Microsoft.NETFramework<%FrameworkVersion%>Temporary ASP.NET Files
   
   By default the IIS_WPG group has permissions on the Temporary ASP.NET Files folder, but not on the Temp directory; ensure that it is configured accordingly

1. In Enterprise Manager under the Security>Logins section
2. Locate the SQL Login that will be used by the K2.net Server and double click the login
3. Click on the Database Access tab
4. Click on the K2.net Log database and check the checkbox next to "db_owner"
    

   
5. Click OK. The login used by the K2.net Workspace Web Site will now have the required permissions on the K2.net Log database

1. Open the web service's web.config file, usually located in <%K2WS_Dir%> WorkspaceService
2. Locate the key/value pair in the ConfigSettings node called "DSN". If SQL authentication was specified when the installer ran, it will look like the following:

 

<add key="DSN" value="Data Source=MySQLServer; initial catalog=K2Log; User ID=mySQLUser;Password=myPass;"/>

 

3. Change the connection string to use integrated security

 

<add key="DSN" value="Data Source=MySQLServer; initial catalog=K2Log; Integrated Security=SSPI;"/>

 

 

 

<identity impersonate="false"/>

 

5. Restart IIS