Solved

SQL Sever 2005 Local System Account & Network Permissons Question

Posted on 2007-11-19
4
516 Views
Last Modified: 2008-02-01
SQL server 2005, Server 2003 not using AD.  Standalone Server.  What if I don't use the local system account and instead create 1 local account for the SQL Agent Service and SQL Service.  Would I then be able to  assign all the necessary permissions to this account that would allow me to run the product and also connect to other resource on other computers?  Some of the informaiton I am reading says that the Agent must be configured as a member of the sysadmin fixed server role in SQL server.  Could I not just assign the local account I create to this server role?  Allow access to this computer via network is an option on the under local security policy I can also add this account to.
0
Comment
Question by:kdschool
  • 2
4 Comments
 
LVL 25

Expert Comment

by:imitchie
ID: 20314604
That looks like it will work.  As you said, just remember to add the user to the sysadmin role
0
 
LVL 15

Expert Comment

by:mcmonap
ID: 20315182
Hi kdschool,

>>>>
SQL server 2005, Server 2003 not using AD.  Standalone Server.  What if I don't use the local system account and instead create 1 local account for the SQL Agent Service and SQL Service.
<<<<
I would do this regardless.  All good.

>>>>
Would I then be able to  assign all the necessary permissions to this account that would allow me to run the product and also connect to other resource on other computers?
<<<<
The windows account will will allow you to run the product, it won't allow you to connect to other resources on other computers unless you set this up seperately.  This is not a SQL thing, it ia windows authentication thing.

>>>>
Some of the informaiton I am reading says that the Agent must be configured as a member of the sysadmin fixed server role in SQL server.
<<<<
The account is required to be a sysadmin. see here:
http://msdn2.microsoft.com/en-us/library/ms191543.aspx

>>>>
Could I not just assign the local account I create to this server role?
<<<<
Yes, as per last question

>>>>
Allow access to this computer via network is an option on the under local security policy I can also add this account to.
<<<<
Yes - this is a windows policy though, not SQL, it will not give the account permissions on other machines, you must deal with Windows authentication for that to work.
0
 

Author Comment

by:kdschool
ID: 20319696
mcmonap: Can you please clarify  this response?
Yes - this is a windows policy though, not SQL, it will not give the account permissions on other machines, you must deal with Windows authentication for that to work

Are you saying if both servers have the same account with the same permissions in windows then I should be able to share resources between them... even SQL data ?  I have a back-up server that I want to use to duplicate the databases so that if server goes down I can just have DNS point to back-up server and they would have same data there.  I would want to use the SQL Server Management Studio to do this if possible.  This is my main concern sharing resources between SQL servers and also for backing up data to external resources since I am forced to use a local password. Thanks so much.

 
 
 
0
 
LVL 15

Accepted Solution

by:
mcmonap earned 500 total points
ID: 20331303
Hi kdschool,

>>>>
Are you saying if both servers have the same account with the same permissions in windows then I should be able to share resources between them... even SQL data ?
<<<<
No, I don't think this will be possible in the way you want.  To use windows authentication across a number of computers I think you must be in a windows domain environment (it may work if you have the same usernames and passwords on computers in a workgroup but I don't have resources to test at present).  In this instance you would need to use SQL Server authentication

>>>>
I have a back-up server that I want to use to duplicate the databases so that if server goes down I can just have DNS point to back-up server and they would have same data there
<<<<
Have you considered database mirroring for this task?  I think you need to use certificated authentication in a non-domain environment.
Mirroring FAQ: http://www.microsoft.com/technet/prodtechnol/sql/2005/dbmirfaq.mspx
Certificate autherntication: http://msdn2.microsoft.com/en-us/library/ms186360.aspx
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Stored procedure query with if 27 37
CONVERT date time to a different time zone. 2 46
Grid querry results 41 74
Getting max record but maybe not use Group BY 2 19
by Mark Wills PIVOT is a great facility and solves many an EAV (Entity - Attribute - Value) type transformation where we need the information held as data within a column to become columns in their own right. Now, in some cases that is relatively…
So every once in a while at work I am asked to export data from one table and insert it into another on a different server.  I hate doing this.  There's so many different tables and data types.  Some column data needs quoted and some doesn't.  What …
This Micro Tutorial will give you a basic overview how to record your screen with Microsoft Expression Encoder. This program is still free and open for the public to download. This will be demonstrated using Microsoft Expression Encoder 4.
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

29 Experts available now in Live!

Get 1:1 Help Now