Solved

Server ertificates and "Log on as:"

Posted on 2009-04-06
1
180 Views
Last Modified: 2012-05-06
I'm attempting to configure an 05 Express install running on an Amazon's EC2 winserver05 instance. Because data is not persisted on the c: drive when an instance is terminated (and since this is a development/testing box, I'll be terminating this server quite often) I'm trying to relocate the system databases to e: drive which _is persisted. I've also copied the .cert files from the C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Data path to the new path.

So far, I've made the necessary adjustments to the point that I can run sql with all system databases living in the e: drive. But I'm getting an error tossed during service startup: 'An error occurred during decryption.' And the service refuses to start under anything except Network Service.

Since this box/install is only a testing/dev server, perhaps I shouldn't worry too much about it but running the service at that level doesn't seem right. And down the road I may want to have this db interacting/replicating to production servers.

To date, i don't have any data populated and am actually thinking i might be best off to create an install script that would let me specify my preferred paths and start the whole thing off from scratch. But something tells me if i re-gen the server certs and tweak some user accounts correctly I'll get this running without a reinstall.

thoughts and guidance much appreciated.
--steve...
0
Comment
Question by:juststeve
1 Comment
 
LVL 24

Accepted Solution

by:
DBAduck - Ben Miller earned 250 total points
ID: 24217521
If you are using encryption, you should start the SQL Server under Network Service and then if you want to change that username and password, use the SQL Configuration Manager and change the service account there so that it will reencrypt the keys with that username.  Once you have encryption in place, you cannot change the SQL Server Service username and password without using the Configuration Manager, otherwise you will lose your encryption because the Service Master key is at the helm of all encryption.
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

by Mark Wills PIVOT is a great facility and solves many an EAV (Entity - Attribute - Value) type transformation where we need the information held as data within a column to become columns in their own right. Now, in some cases that is relatively…
In SQL Server, when rows are selected from a table, does it retrieve data in the order in which it is inserted?  Many believe this is the case. Let us try to examine for ourselves with an example. To get started, use the following script, wh…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now