PVS Configuration Wizard fails when connecting to the database

PVS Configuration Wizard fails when connecting to the database

book

Article ID: CTX691530

calendar_today

Updated On:

Description

The customer has PVS servers running in Azure. In the PVS Configuration Wizard, in the "Database Server" dialogue when specifying Authentication "Active Directory Password", and proceeding with specifying a domain username and password results in an error.


 

Environment

Citrix is not responsible for and does not endorse or accept any responsibility for the contents or your use of these third party Web sites. Citrix is providing these links to you only as a convenience, and the inclusion of any link does not imply endorsement by Citrix of the linked Web site. It is your responsibility to take precautions to ensure that whatever Web site you use is free of viruses or other harmful items.

Resolution

When using on premises domain accounts to connect to the database, select the option "Active Directory Integrated".
Other options (aside from "SQL server") are only valid for Microsoft Entra Authentication

Problem Cause

PVS servers when running in Azure, offer additional options for database connectivity in Configuration Wizard.
On premises PVS servers will show only two options "Active Directory Integrated" and "SQL Server"

The additional options for database connectivity while running on Azure are only valid for using Microsoft Entra Authentication, and are not valid for on premises domain accounts.

Additional Information

https://learn.microsoft.com/en-us/sql/connect/oledb/applications/using-connection-string-keywords-with-oledb-driver-for-sql-server?view=sql-server-ver16


Authentication -  SSPROP_AUTH_MODE 
Specifies the SQL or Microsoft Entra authentication used. Valid values are:

  • (not set): Authentication mode determined by other keywords.
    ActiveDirectoryPassword:User ID and password authentication with a Microsoft Entra identity.
  • ActiveDirectoryIntegrated: Integrated authentication with Microsoft Entra ID.
    • NOTE: The ActiveDirectoryIntegrated keyword can also be used for Windows authentication to SQL Server. It replaces Integrated Security (or Trusted_Connection) authentication keywords. It's recommended that applications using Integrated Security (or Trusted_Connection) keywords or their corresponding properties set the value of the Authentication keyword (or its corresponding property) to ActiveDirectoryIntegrated to enable new encryption and certificate validation behavior.
  • ActiveDirectoryInteractive: Interactive authentication with a Microsoft Entra identity. This method supports Microsoft Entra multifactor authentication.
  • ActiveDirectoryMSI: Managed Identity authentication. For a user-assigned identity, the user ID should be set to the object ID of the user identity.
  • ActiveDirectoryServicePrincipal: Authentication with a Microsoft Entra service principal. The user ID should be set to the application (client) ID. The password should be set to the application (client) secret.
  • SqlPassword: Authentication using user ID and password.
Powered by Wolken Software