Even if you set Persist Security Info=true
OR Persist Security Info=false
it won't show a difference up front. The difference is happening in the background.
When Persist Security Info=False
, security-sensitive
information, such as the password, is not returned as part of the
connection if the connection is open or has ever been in an open
state.
If you set Persist Security Info=True
, Windows will remember the password specified in the connection string.
That's the difference.
MSDN Explanation
Setting Persist Security Info
true or false will come into effect only if you mention username and password in the connection string. If you mention username and password in the connection string and set Persist Security Info
as false
then the credentials cannot be extracted, but if you set Persist Security Info
as true while giving credentials in the connection string, windows will remember the credentials, and it can be extracted programmatically.