SQL Service Accounts
From: Mike St.Onge (MikeStOnge_at_discussions.microsoft.com)
Date: 05/23/05
- Next message: Swami: "Grant user to see the SQL Server job status"
- Previous message: Mark J. McGinty: "Re: Ipsec & SQL Server"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 23 May 2005 10:39:38 -0700
I am running SQL Server 2000 on a W2k SP4 environment. When attempting to
set the SQL services to run with a domain user account via enterprise
manager, it returns a bad password. I know that the password is set
correctly. I can even log in as the domain user account and authenticate
correctly. The problem only happens in SQL Enterprise Manager. I can even
use the services mmc and set the service to run with the user account and it
works. My question is why?
Useful info:
- this problem exists on all servers running SQL in the domain
- host system returns an event ID 529 in the security log (unknown user or
bad password)
- domain controller logs an event 681, showing the user account and an error
code of 3221225578 (bad password)
- Authentication ticket and Session ticket was granted to the workstation
and user respectively.
Other strange behaviors:
- The event log shows as NTLM used for logon instead of kerberos, even after
negotiating a session ticket
- packet sniffing shows 0 NTLM packets, only kerberos
I have absolutely no idea what is causing this. I realize I could work
around this, however, the network infrastructure is my responsibility and I
want to figure out why this is happening. Thanks in advance!
- Next message: Swami: "Grant user to see the SQL Server job status"
- Previous message: Mark J. McGinty: "Re: Ipsec & SQL Server"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
