Error adding domain account to SQL Server in 2008 R2 AD
Posted on 2011-03-03
We are having an issue adding a domain user as an SQL server login.
Server: SQL Server 2008 R2, Windows 2008 R2. Computer is on a domain
Domain Controller: Windows 2008 R2, Active Directory on same machine, running on 2008 R2 compatibility mode (not 2000 or 2003 mode as in other posts on this problem!).
When we try to add a domain user to Sql server we get an error 15401 (user or user group not found). However, the active directory can be browsed from that machine - we see the domain users when browsing them in sql server but cannot add them.
The problem has identical symptoms like the often-discussed problem found in Windows 200/2003 active directories and we tried all suggestions we found for this (MS hotfix, kicking the server out of the domain and back in, changing group policy, even disabling the firewall for a moment). Nothing works. It doesn't matter if we try to add the login after having logged into Windows with a local or a domain account. We can add local users as new logins to SQL server without a problem. The behaviour is identical on a second (test) machine running only SQL Server Express 2008 R2 on Win2008R2.
Any ideas how to solve this?
BTW: We stumbled across this when trying to install Team Foundation Server - it's setup stops with a message that the domain controller is unavailable. However, the DC is available as we can login with domain accounts and browse the AD from that server with no problem. We couldn't get this to work so I figured I give it a try in SQL server.