Pros

Easy for users since no separate application sign-in is required.

Cons

Does not support accessing a remote database, which rules it out for web applications that run on machines separate from their database servers, a common practice.

Does not allow configuring each web application with its own application account that has access to only the data that Web application needs.

Pros

Easy for users since no separate application sign-in is required.

Cons

Violates several security “best practices”, including (a) passwords should not be stored in plain text, such as in a Web.config or Machine.config file and (b) an application should only be able to access data that it needs and no other data.  As an example, if you have an application with access to highly sensitive data (e.g., payroll data), this approach would unnecessarily give all other applications (e.g., an order entry application) access to this sensitive data, because it uses the same account to access data for all applications running on that system.

Pros

Generally more secure since users have their own login credentials for the Microsoft SQL Server database.

Cons

Users must use separate login credentials for Microsoft SQL Server, which is more difficult for many.

Pros

Allows accessing remote databases on separate servers.

Windows Authentication doesn’t require a separate database sign-in, which is easier for most users.

Cons

More difficult to set up.  See Implementing Windows Authentication with .NET Impersonation for details.