Sec_Delegation

Description

When you access an SAP Adaptive Server Enterprise database in PowerBuilder through Open Client, Sec_Delegation is one of several parameters that support login authentication for network-based security services. (For other login authentication parameters, see the See Also section.)

For applications that are using network-based login authentication to connect to an SAP Sybase Open Server gateway, Sec_Delegation controls whether the gateway server is allowed to connect to a remote SQL Server using delegated credentials. When Sec_Delegation is set to 1, the gateway can connect to a remote server using the client's delegated credentials. The remote server must also be using network-based authentication and an identical security mechanism.

When Sec_Delegation is set to 0 (the default), the gateway server cannot connect to a remote server using delegated credentials.

You must specify a value for Sec_Delegation before connecting to the database in PowerBuilder.

Using third-party security mechanisms

For information about the third-party security mechanisms and operating system platforms that has been tested with Open Client security services, see the Open Client documentation.

Applies to

ASE, SYC SAP Adaptive Server Enterprise

Syntax

Sec_Delegation=value

Parameter	Description
value	Specifies whether the SAP Sybase Open Server gateway is allowed to connect to a remote SQL Server using the client's delegated credentials. Values are: 0 (Default) Prohibit the gateway from connecting to a remote server using delegated credentials. You can also specify 'No' or 'False' to set this value. 1 Allow the gateway to connect to a remote server using delegated credentials. You can also specify 'Yes' or 'True' to set this value.

Parameter

Description

value

Specifies whether the SAP Sybase Open Server gateway is allowed to connect to a remote SQL Server using the client's delegated credentials. Values are:

0

(Default) Prohibit the gateway from connecting to a remote server using delegated credentials. You can also specify 'No' or 'False' to set this value.
1

Allow the gateway to connect to a remote server using delegated credentials. You can also specify 'Yes' or 'True' to set this value.

Default value

Sec_Delegation=0

Usage

Not supported with CyberSafe Kerberos

Sec_Delegation is not supported if your security mechanism is CyberSafe Kerberos.

Set Release parameter

For this parameter to take effect, you must also set the Release parameter to 11 or higher to specify that your application should use the appropriate version of SAP Sybase Open Client Client-Library (CT-Lib) behavior. See the description of the Release parameter for more information.

Requirements for use

To use Sec_Delegation or any other parameter supporting Open Client security services, you must meet certain requirements for using security services in your PowerBuilder application. For details, see the section called “Requirements for using Open Client security services” in Connecting to Your Database.

Corresponding CT-Lib connection property

Specifying a value for Sec_Delegation sets the corresponding SAP Sybase CT-Lib connection property named CS_SEC_DELEGATION.

Examples

To allow the Open Server gateway to connect to a remote server using delegated credentials:

Database profile

Select the Use Delegated Credentials check box on the Security page in the Database Profile Setup dialog box.

Application

Type the following in code:

SQLCA.DBParm="Sec_Delegation=1;Release=15"

See also

Prev	Up	Next
Sec_Data_Origin	Home	Sec_Keytab_File

Connection ReferenceDatabase parameters and supported database interfaces

Sec_Delegation

Using third-party security mechanisms

Connection Reference
Database parameters and supported database interfaces