Solved

SQL Sever 2005 Local System Account & Network Permissons Question

Posted on 2007-11-19
4
544 Views
Last Modified: 2008-02-01
SQL server 2005, Server 2003 not using AD.  Standalone Server.  What if I don't use the local system account and instead create 1 local account for the SQL Agent Service and SQL Service.  Would I then be able to  assign all the necessary permissions to this account that would allow me to run the product and also connect to other resource on other computers?  Some of the informaiton I am reading says that the Agent must be configured as a member of the sysadmin fixed server role in SQL server.  Could I not just assign the local account I create to this server role?  Allow access to this computer via network is an option on the under local security policy I can also add this account to.
0
Comment
Question by:kdschool
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 25

Expert Comment

by:imitchie
ID: 20314604
That looks like it will work.  As you said, just remember to add the user to the sysadmin role
0
 
LVL 15

Expert Comment

by:mcmonap
ID: 20315182
Hi kdschool,

>>>>
SQL server 2005, Server 2003 not using AD.  Standalone Server.  What if I don't use the local system account and instead create 1 local account for the SQL Agent Service and SQL Service.
<<<<
I would do this regardless.  All good.

>>>>
Would I then be able to  assign all the necessary permissions to this account that would allow me to run the product and also connect to other resource on other computers?
<<<<
The windows account will will allow you to run the product, it won't allow you to connect to other resources on other computers unless you set this up seperately.  This is not a SQL thing, it ia windows authentication thing.

>>>>
Some of the informaiton I am reading says that the Agent must be configured as a member of the sysadmin fixed server role in SQL server.
<<<<
The account is required to be a sysadmin. see here:
http://msdn2.microsoft.com/en-us/library/ms191543.aspx

>>>>
Could I not just assign the local account I create to this server role?
<<<<
Yes, as per last question

>>>>
Allow access to this computer via network is an option on the under local security policy I can also add this account to.
<<<<
Yes - this is a windows policy though, not SQL, it will not give the account permissions on other machines, you must deal with Windows authentication for that to work.
0
 

Author Comment

by:kdschool
ID: 20319696
mcmonap: Can you please clarify  this response?
Yes - this is a windows policy though, not SQL, it will not give the account permissions on other machines, you must deal with Windows authentication for that to work

Are you saying if both servers have the same account with the same permissions in windows then I should be able to share resources between them... even SQL data ?  I have a back-up server that I want to use to duplicate the databases so that if server goes down I can just have DNS point to back-up server and they would have same data there.  I would want to use the SQL Server Management Studio to do this if possible.  This is my main concern sharing resources between SQL servers and also for backing up data to external resources since I am forced to use a local password. Thanks so much.

 
 
 
0
 
LVL 15

Accepted Solution

by:
mcmonap earned 500 total points
ID: 20331303
Hi kdschool,

>>>>
Are you saying if both servers have the same account with the same permissions in windows then I should be able to share resources between them... even SQL data ?
<<<<
No, I don't think this will be possible in the way you want.  To use windows authentication across a number of computers I think you must be in a windows domain environment (it may work if you have the same usernames and passwords on computers in a workgroup but I don't have resources to test at present).  In this instance you would need to use SQL Server authentication

>>>>
I have a back-up server that I want to use to duplicate the databases so that if server goes down I can just have DNS point to back-up server and they would have same data there
<<<<
Have you considered database mirroring for this task?  I think you need to use certificated authentication in a non-domain environment.
Mirroring FAQ: http://www.microsoft.com/technet/prodtechnol/sql/2005/dbmirfaq.mspx
Certificate autherntication: http://msdn2.microsoft.com/en-us/library/ms186360.aspx
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Passing value to a stored procedure 8 119
How can I exclude some wording in a like statement? 39 83
Find results from sql within a time span 11 56
tempdb log keep growing 7 56
In SQL Server, when rows are selected from a table, does it retrieve data in the order in which it is inserted?  Many believe this is the case. Let us try to examine for ourselves with an example. To get started, use the following script, wh…
In this article I will describe the Backup & Restore method as one possible migration process and I will add the extra tasks needed for an upgrade when and where is applied so it will cover all.
In an interesting question (https://www.experts-exchange.com/questions/29008360/) here at Experts Exchange, a member asked how to split a single image into multiple images. The primary usage for this is to place many photographs on a flatbed scanner…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question