AboutPricingCommunityTeamsStart Free TrialLog in
Avatar of Aamer-
Aamer-
 asked on

MSSQLSERVICE not starting. error 1067

I have an SQL cluster hosting databases for SCCM, SCOM, and WSUS. I wanted to configure encryption so requested a certificate from an internal CA with a subject name of the SQL cluster virtual server. on the nodes of the SQL server there was a self signed certificate created automatically for SCCM. following the instruction in most of the blogs, I replaced the thumbprint of the certificate in the registry to use the thumbprint of the new certificate. the moment the thumbprint was changed the SQL service stopped and the cluster resource for SQL went down. I replaced the thumbprint on both the nodes and still the service does not come up. I replaced the old thumbprint and restarted but the service still does not start. I did a SQL server repair but no luck. the error I get is : unexpected service failure error 1067. now all of my services are down. what can be done to bring back the service to a running state. SQL version I am running on the cluster is 2012 sp1. it a active/passive cluster hosting databases for all my services. I changed the thumbprint as the application catalog role in SCCM was not working and I found some blogs talking about sql encryption and this messed it up for me.
Microsoft SQL ServerSCCM
Avatar of undefined
Last Comment
Daniel_PL
8/22/2022 - Mon
arnold
You likely have not transferred the private key of the certificate.

Such undertakings should only be done in a test environment with good backups.
you would need to use the osql command line to try and revert what you did.

the certificate is not part of the user/service certificate store.......
EugeneZ
try to undo all what you set and reboot nodes
did you make these changes on both nodes?
did you try to do fail over to  2nd node?
did you reboot boxes?
what errors do you see in event viewer?
in cluster error log?
more details is better
--
Are you using the cluster service as domain login with local admin rights on the both nodes?


what blogs instructions did you use?

did you see this one?

https://social.msdn.microsoft.com/Forums/sqlserver/en-US/01a0191f-88d4-4e67-8017-fd26a1dec1fc/ssl-thumbprint-registry-setting-for-sql-server-2008-clustered-on-windows-server-2008?forum=sqlsetupandupgrade
ASKER CERTIFIED SOLUTION
Daniel_PL
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes
Plans and Pricing
Resources
Product
Podcasts
Careers
Contact Us
Teams
Certified Expert Program
Credly Partnership
Udemy Partnership
Privacy Policy
Terms of Use

© 1996-2023 Experts Exchange, LLC. All rights reserved. Covered by US Patent