Solved

SQL Sever 2005 Local System Account & Network Permissons Question

Posted on 2007-11-19
4
548 Views
Last Modified: 2008-02-01
SQL server 2005, Server 2003 not using AD.  Standalone Server.  What if I don't use the local system account and instead create 1 local account for the SQL Agent Service and SQL Service.  Would I then be able to  assign all the necessary permissions to this account that would allow me to run the product and also connect to other resource on other computers?  Some of the informaiton I am reading says that the Agent must be configured as a member of the sysadmin fixed server role in SQL server.  Could I not just assign the local account I create to this server role?  Allow access to this computer via network is an option on the under local security policy I can also add this account to.
0
Comment
Question by:kdschool
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 25

Expert Comment

by:imitchie
ID: 20314604
That looks like it will work.  As you said, just remember to add the user to the sysadmin role
0
 
LVL 15

Expert Comment

by:mcmonap
ID: 20315182
Hi kdschool,

>>>>
SQL server 2005, Server 2003 not using AD.  Standalone Server.  What if I don't use the local system account and instead create 1 local account for the SQL Agent Service and SQL Service.
<<<<
I would do this regardless.  All good.

>>>>
Would I then be able to  assign all the necessary permissions to this account that would allow me to run the product and also connect to other resource on other computers?
<<<<
The windows account will will allow you to run the product, it won't allow you to connect to other resources on other computers unless you set this up seperately.  This is not a SQL thing, it ia windows authentication thing.

>>>>
Some of the informaiton I am reading says that the Agent must be configured as a member of the sysadmin fixed server role in SQL server.
<<<<
The account is required to be a sysadmin. see here:
http://msdn2.microsoft.com/en-us/library/ms191543.aspx

>>>>
Could I not just assign the local account I create to this server role?
<<<<
Yes, as per last question

>>>>
Allow access to this computer via network is an option on the under local security policy I can also add this account to.
<<<<
Yes - this is a windows policy though, not SQL, it will not give the account permissions on other machines, you must deal with Windows authentication for that to work.
0
 

Author Comment

by:kdschool
ID: 20319696
mcmonap: Can you please clarify  this response?
Yes - this is a windows policy though, not SQL, it will not give the account permissions on other machines, you must deal with Windows authentication for that to work

Are you saying if both servers have the same account with the same permissions in windows then I should be able to share resources between them... even SQL data ?  I have a back-up server that I want to use to duplicate the databases so that if server goes down I can just have DNS point to back-up server and they would have same data there.  I would want to use the SQL Server Management Studio to do this if possible.  This is my main concern sharing resources between SQL servers and also for backing up data to external resources since I am forced to use a local password. Thanks so much.

 
 
 
0
 
LVL 15

Accepted Solution

by:
mcmonap earned 500 total points
ID: 20331303
Hi kdschool,

>>>>
Are you saying if both servers have the same account with the same permissions in windows then I should be able to share resources between them... even SQL data ?
<<<<
No, I don't think this will be possible in the way you want.  To use windows authentication across a number of computers I think you must be in a windows domain environment (it may work if you have the same usernames and passwords on computers in a workgroup but I don't have resources to test at present).  In this instance you would need to use SQL Server authentication

>>>>
I have a back-up server that I want to use to duplicate the databases so that if server goes down I can just have DNS point to back-up server and they would have same data there
<<<<
Have you considered database mirroring for this task?  I think you need to use certificated authentication in a non-domain environment.
Mirroring FAQ: http://www.microsoft.com/technet/prodtechnol/sql/2005/dbmirfaq.mspx
Certificate autherntication: http://msdn2.microsoft.com/en-us/library/ms186360.aspx
0

Featured Post

Salesforce Has Never Been Easier

Improve and reinforce salesforce training & adoption using WalkMe's digital adoption platform. Start saving on costly employee training by creating fast intuitive Walk-Thrus for Salesforce. Claim your Free Account Now

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

INTRODUCTION: While tying your database objects into builds and your enterprise source control system takes a third-party product (like Visual Studio Database Edition or Red-Gate's SQL Source Control), you can achieve some protection using a sing…
This article explains how to reset the password of the sa account on a Microsoft SQL Server.  The steps in this article work in SQL 2005, 2008, 2008 R2, 2012, 2014 and 2016.
Add bar graphs to Access queries using Unicode block characters. Graphs appear on every record in the color you want. Give life to numbers. Hopes this gives you ideas on visualizing your data in new ways ~ Create a calculated field in a query: …
This tutorial will teach you the special effect of super speed similar to the fictional character Wally West aka "The Flash" After Shake : http://www.videocopilot.net/presets/after_shake/ All lightning effects with instructions : http://www.mediaf…

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question