We have an implementation consisting of OneIM 8.0.2 and OneIM docker containers (job servers, appserver, web servers)
The customer would like to add a MSSQL target system (Native Database connector) and the customer preferred connection method is to use Windows domain service account and connect using integrated authentication.
If using a standard job server installation on a Windows domain server this would not be too much of a problem (just run the job server service under the windows service account) but when the job server is inside a docker container this is not so easy.
Does anyone have any ideas how this might be achieved using a Windows domain service account?
My thoughts on options:
- Use a SQL account – not the preferred customer option but could be secured.
- Use gMSA – The customer is currently not ready (as of today) but could be a future option https://docs.microsoft.com/en-gb/virtualization/windowscontainers/manage-containers/manage-serviceaccounts
- I am not sure if this target system has an interface but if it did then perhaps connect through web services