Msg 15121, Level 16, State 10, XP_Cmdshell - A call to 'CreateProcessAsUser' failed with error code: '1314'.

Question

Viewing 6 posts - 1 through 5 (of 5 total)

You must be logged in to reply to this topic. Login to reply

Adiga One Orange Chip Points: 27284 More actions · Answer 1

Did you use sp_xp_cmdshell_proxy_account as explained here?

Also you may find this article useful.

Pradeep Adiga
Blog: sqldbadiaries.com
Twitter: @pradeepadiga

VSubramanian2 Mr or Mrs. 500 Points: 555 More actions · Answer 2

Mr or Mrs. 500

Points: 555

July 27, 2010 at 4:10 am

yes i used it.

VSubramanian2 Mr or Mrs. 500 Points: 555 More actions · Answer 3

Mr or Mrs. 500

Points: 555

July 28, 2010 at 2:07 am

Do anyone have solution for this issue.

iaminyourhead SSC Eights! Points: 810 More actions · Answer 4

Yes :

RDP to the server:

1. Under local group policy in user rights assignments, you will have to assign service account to

these privileges:

Act as part of the operating system

Adjust memory quotas for a process

Impersonate a client after authentication

Lock pages in memory

Log on as a batch job

Log on as a service

Replace a process level token

2. Restart the entire server.

3. set up proxy account for for xp_cmdshell.

sp_xp_cmdshell_proxy_account 'service account' ,'password'

4. Grant the user execute permission who wants to use xp_cmdshell.

grant execute to "USER" on xp_cmdshell.

dallas13 SSCertifiable Points: 7491 More actions · Answer 5

Hello,

I have sql server and agent running under account called 'domain\service'.

With this account I can execute xp_cmsdhell from SSMS.

Does that mean this account has all those 7 listed privileges under local group policy???

I think answer is yes and thats why I can execute xp_cmsdhell from SSMS.

But then I have done step-3 and 4 above and I am still getting issues.WHY???

Does that mean I have to check all those 7 privileges for 'domain\service', add if missing and restart server??