System Architect XT can access encyclopedias using Windows authentication mode or SQL authentication mode. The web.config file can be configured to use one or the other. If you decide to use SQL authentication then there is a DBUser and DBPassword that have been added to the connectionStrings section of the web.config file. If the connectionString value of the DBUser item is not empty then the system will attempt to connect to the selected server using the values provided in the connectionString fields. If the connectionStrings value of the DBUser item is empty, then the system will continue to use the Windows authentication mode using the identity account. The fixed identity account should be a low-privilege account that has been granted only necessary permissions in the database.

The example below will cause the system to attempt connection to the database server using SQL authentication mode, using the user ID saxtuser and password saxtpwd.

The fixed identity account that is used for Windows authentication is stored in the <identity> element of the <system.web> section of the web.config file.

The information in the connectionStrings section and identity element can be encrypted with standard Microsoft utilities. We have summarized use of Machine-Level Key encryption in Machine-Level Key; the complete text can be found at the Microsoft page below:

https://docs.microsoft.com/en-us/previous-versions/msp-n-p/ff650304(v=pandp.10)

The web.config file is located in the SAXT installation folder – usually Program Files (x86)\UNICOM Systems\System Architect Suite\SAXT.

Before proceeding, refer to Where is the web.config file located?.

When using Machine-Level Key encryption, the RSA machine key containers are stored in the folder below:

The same SAXT identity impersonation user referred to above will need read access to the file created in this folder.

Before proceeding, refer to Where is the web.config file located?.

Before proceeding, refer to Where is the web.config file located?.