SA0094 : Authentication set to Mixed Mode

The topic describes the SA0094 analysis rule.


Authentication set to Mixed Mode


The rule checks if the SQL Server instance is configured to allow both Windows Authentication and SQL Server Authentication.

Windows Authentication Mode is much more secure than Mixed Mode, and the SQL Server Authentication is provided for backward compatibility only. Whenever possible use Windows Authentication.

Note Note

Changing this setting will prevent login using SQL Authentication accounts.

How to fix

Disable SQL Server Authentication and use only Windows Authentication.


The rule has a ContextOnly scope and is applied only on current server and database schema.


Rule has no parameters.


The rule requires SQL Connection. If there is no connection provided, the rule will be skipped during analysis.

Effort To Fix
20 minutes per issue.

Maintenance Rules, Security Rules

Additional Information
See Also

Other Resources