June 20, 2011 at 2:16 am
Hello there,
I hope somebody can point me in the right direction. I recently installed a SQL 2008 R2 Machine, stand alone, mixed authentication. I created individual bog standard domain account for the services and entered these during set up. Everything seems to work ok, the maintenance plan backs up the DB's running as the agent account. However, at the same time in the early hours of the morning (outside of the SQL backup window) I get the following error,
Login failed for user 'DOMAIN\Agent_Account. Reason: Token-based server access validation failed with an infrastructure error. Check for previous errors. [CLIENT: <local machine>]
I can log onto the server ok as the account, but login fails when I try to log into SSMS. I have found the error on the web, but none of the situations are the same as mine. I guess its something basic, but what could I have a missed out? Should I add the account to the local windows admin group?
Appreciate any help and thank you for reading.
Regards,
D.
June 20, 2011 at 4:16 am
I had a similar problem, and none of the internet blogs and forums seemed to answer it. I eventualy found a work round after talking to a sharepoint developer (?).We created a new SPN for the SQL service on the Domain controller using the SETSPN.exe, I manually added :
MSSQLSvc/SQLSVR01:1433
MSSQLSvc/SQLSVR01.mydomain.com:1433
(SQLSVR01 being the servername)
there is a useful article on SQL security that helped me understand how to create and edit SPN's
I can't honestly say I understand how the problem was created or why it is fixed but it now runs as expected. We are running SQL2008 R2 on a windows 2008 R2 server
June 20, 2011 at 4:58 am
Hey there,
Thank you so much for replying, I take it MSSQLSvc is the service name, not a domain user name?
Thanks again,
D.
June 20, 2011 at 5:32 am
yes it is, hope this helps
Viewing 4 posts - 1 through 3 (of 3 total)
You must be logged in to reply to this topic. Login to reply