Configuring Your Machine for Windows Authentication

This authentication is only supported on Microsoft Windows operating systems. You must configure TIBCO BusinessEvents to support Windows authentication when accessing SQL Server database.

For more details SQL server and Microsoft Windows, see their documentation.

    Procedure
  1. Download and install the Microsoft JDBC 4 Driver distribution on the machines TIBCO BusinessEvents runs on.
    The distribution contains the sqljdbc_auth.dll used by the client to support Windows authentication.
  2. Edit the be-engine.tra file and update the tibco.env.PATH variable so that it points to the folder where sqljdbc_auth.dll resides. For instance:
    tibco.env.PATH C:/sqljdbc_4.0/enu/auth/x64%PSP%%BE_HOME%/hotfix/bin%PSP%.
    Note: JDBC Driver distribution has an x64 or x86 version of that DLL file. Pick the same version as your TIBCO BusinessEvents installation.
  3. Edit the studio.ini file and add the java.library.path variable so that it points to the folder where sqljdbc_auth.dll resides. For instance:
    -Djava.library.path=C:/sqljdbc_4.0/enu/auth/x64
    Note: JDBC Driver distribution has an x64 or x86 version of that dll. Pick the same version as your BusinessEvents installation.
  4. Use the property integratedSecurity=true in the BusinessEvents JDBC resource. For instance:
    jdbc:sqlserver://sqlserver-group-listener:1433;databaseName=be_user;integratedSecurity=true
  5. Replace the script in <tibco_be_home>/bin/initialize_database_sqlserver.sql with the following script that creates a user associated to Windows login:
    use master
    go
    drop database be_user
    go
    create database be_user
    go
    drop login [domain\user]
    go
    create login [domain\user] from windows with default_database = be_user
    go
    use be_user
    create user [domain\user] for login [domain\user]
    go
    grant control, alter, connect to [domain\user]
    go
    alter role [db_owner] add member [domain\user]
    go