The isql and bcp utilities include the following command line options to enable network-based security services on the connection:
-R remote_server_principal
-V security_options
-Z security_mechanism
These options are described in the following paragraphs.
-R remote_server_principal – specifies the principal name for the server as defined to the security mechanism. By default, a server’s principal name matches the server’s network name (which is specified with the -S option or the DSQUERY environment variable). The -R option must be used when the server’s principal name and network name are not the same.
-V security_options – specifies network-based user authentication. With this option, the user must log in to the network’s security system before running the utility. In this case, if a user specifies the -U option, the user must supply the network user name known to the security mechanism; any password supplied with the -P option is ignored. -V can be followed by a security_options string of key-letter options to enable additional security services. These key letters are:
c – enables data confidentiality service.
d – requests credential delegation and forwards client credentials.
i – enables data integrity service.
m – enables mutual authentication for connection establishment.
o – enables data origin stamping service.
r – enables data replay detection.
q – enables out-of-sequence detection.
-Z security_mechanism – specifies the name of a security mechanism to use on the connection.
Security mechanism names are defined in the libtcl.cfg configuration file. If no security_mechanism name is supplied, the default mechanism is used. See the Open Client/Server Configuration Guide for your platform.
If you are using Client-Library to connect to Adaptive Server, you can define security properties before connecting to the server. For example, to check message sequencing, set the CS_SEC_DETECTSEQ property. For information about using security services with Client-Library, see the Open Client Client-Library/C Reference Manual.