how to connect to DB server through application server ?

To create service principal names

Open an elevated command prompt. To do this, click Start, and then in the search window, type Command Prompt. Right-click Command Prompt, and then click Run as administrator.

At the command prompt, create an SPN for the Microsoft Dynamics NAV Server service. The syntax is:

setspn -A InstanceName/FullyQualifiedDomainNameOfServer:Port Domain\User
Using NAVSERV, which is the computer running Microsoft Dynamics NAV Server, and DynamicsNAV, which is the default instance name for Microsoft Dynamics NAV Server, the actual command has the following format:

setspn -A DynamicsNAV/NAVSERV.yourDomain.yourCompany.com:7046 yourDomain\yourUser
Replace "yourDomain," "yourCompany," and "yourUser" with the appropriate values.

Create an SPN for the SQL Server service. This service runs on the NAVSQL computer with a default instance name of MSSQLSvc. Type the following command:

setspn -A MSSQLSvc/NAVSQL.yourDomain.yourCompany.com:1433 yourDomain\yourUser
Again, replace "yourDomain," "yourCompany," and "yourUser" with the appropriate values.

mohana_cse06 wrote:

Read this

Create Service Principal Names

The first step in setting up delegation is to create service principal names (SPN). To make delegation more secure, Active Directory uses Kerberos to authenticate services. An SPN is the name by which a client uniquely identifies an instance of a service, using the account under which the service runs. You must create one SPN for the Microsoft Dynamics NAV Server service and one SPN for the SQL Server service to make delegation work.

BTW, your SQL server and NAV server both are in Domain?

Log Name: Application
Source: MSSQLSERVER
Date: 8/16/2011 2:59:33 PM
Event ID: 18456
Task Category: Logon
Level: Information
Keywords: Classic,Audit Failure
User: ANONYMOUS LOGON
Computer: DatabaseServer.domain.com
Description:
Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'. Reason: Token-based server access validation failed with an infrastructure error. Check for previous errors. [CLIENT: 192.168.1.17]
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"&gt;
<System>
<Provider Name="MSSQLSERVER" />
<EventID Qualifiers="49152">18456</EventID>
<Level>0</Level>
<Task>4</Task>
<Keywords>0x90000000000000</Keywords>
<TimeCreated SystemTime="2011-08-16T06:59:33.000000000Z" />
<EventRecordID>27996</EventRecordID>
<Channel>Application</Channel>
<Computer>DatabaseServer.Domain.com</Computer>
<Security UserID="S-1-5-7" />
</System>
<EventData>
<Data>NT AUTHORITY\ANONYMOUS LOGON</Data>
<Data> Reason: Token-based server access validation failed with an infrastructure error. Check for previous errors.</Data>
<Data> [CLIENT: 192.168.1.17]</Data>
<Binary>184800000E0000000D0000005300540041004E004C00450059002D0054003400300030000000070000006D00610073007400650072000000</Binary>
</EventData>
</Event>

Registering ServicePrincipalNames for CN=My user domain name,OU=Users,OU=Domain HQ,DC=domain,DC=com,DC=sg
DynamicsNav/ComputerName.Domain.com.sg:7046
Failed to assign SPN on account 'CN=My user domain name,OU=Users,OU=Domain HQ,DC=domain,DC=com,DC=sg', error 0x2098/8344 -> Insufficient access rights to perform the operation.

mohana_cse06 wrote:

How did you login to nav server? as a system administrator or not?

mohana_cse06 wrote:

logging with administrator rights is different and login as administrator is different

rhpnt wrote:

julkifli33 wrote:

hi all
i have scenario like this, we are using Nav 2009 R2 and RTC
we set 2 servers and 10 clients
1 server for database server (installed ms SQL server 2008 R2)
1 server for application server (installed Nav 2009 R2)
and 10 clients, all installed RTC

Do you mean "NAV application server" or "NAV server"?

julkifli33 wrote:

what i want is.... these 10 clients will connect to application server
and the service in application server will stored data in database server
from application server itself, yes it could connect to database server localhost:7046/DynamicsNav
but when using clients to ApplicationServer:7046/DynamicsNav it cannot
it was said You dont have permission to ApplicationServer SQL Server Login
and then i test installed RTC in database server
i connect from client direct to database server DatabaseServer:7046/DynamicsNav
yes it can !!

If you ment "NAV server" - Why would you want to bypass the business logic layer which is "by design"?

rhpnt wrote:

You wrote:

julkifli33 wrote:

...and then i test installed RTC in database server
i connect from client direct to database server DatabaseServer:7046/DynamicsNav
yes it can !!

so I figured you are trying to bypass the middle tier (to connect directly to the db usually means 2 tiers). Anyway, then you wrote:

julkifli33 wrote:

when connect from application server itself, i am able to connect
but from client to application server, cannot

the question that arises here is: "How and to what are you connecting to?"

Then you wrote:

julkifli33 wrote:

...but when using clients to ApplicationServer:7046/DynamicsNav it cannot
it was said You dont have permission to ApplicationServer SQL Server Login

That would simply mean that your clients (PC's) don't have access to the middle tier (NAV) server. Either the server is not in the (right) domain or the clients (PC's) have not been configured to have access to the server.