Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
DBA in the making
Aged Yak Warrior
638 Posts |
 Posted - 2010-02-26 : 12:27:29
|
| I'm trying to set up a SQL Server 2005 box to use while I'm studying 70-431. The training material says to use a domain account for the user context of the SQL Server service and the Agent service. So I set up a domain server (Win server 2003), and added 2 users (sqluser + sqlagentuser). Then I connected the machine I intend to install SQL server to the domain. The machine is also Win server 2003. I logged into that machine as the domain administrator, and ran the SQL server 2003 installer. But when I got to the setup page for the service account, and entered the sqluser details, I get a message "SQL Server Setup could not validate the service accounts. Either the service accounts have not been provided for all of the services being installed, or the specified username or password is incorrect. For each service, specify a valid username, password, and domain, or specify a built-in system account."I have checked both the username and password. I've also entered the setting for the other accounts (Agent, AS account, etc). But when any of these accounts is configured with the user account created, I get this message. I tried using the domain administrator account, and that worked. So I'm thinking that the user account I created doesn't have the necessary permissions. But all the docs I seen say that the service accounts should be created with minimal permissions. Is there a setting I have to apply on the domain controller for this account? I don't really know much about domain controllers, so I'm not sure if there's a standard setting that usually gets applied to all account, that I haven't applied. I am about to login to the sql box using the sqluser account, so I know it works.There are 10 types of people in the world, those that understand binary, and those that don't. |
|
|
Bustaz Kool
Master Smack Fu Yak Hacker
1834 Posts |
Posted - 2010-02-26 : 18:08:56
|
| When you log into Windows using the "sqluser" account, are you able to access all of the resources that the SQL Service would need, such as Disk Drives, Read/Write access, etc?=======================================Few things are harder to put up with than the annoyance of a good example. (Mark Twain) |
 |
|
|
Jaime
Starting Member
19 Posts |
Posted - 2010-02-26 : 23:35:25
|
| Based on the error message, it is not probably a permissions issue. My guess is that you specified the account as a local account rather than a domain account. You say administrator worked, but it may have been the local administrator instead of the domain administrator. By any chance do both of the administrators have the same password? |
|
|
|
DBA in the making
Aged Yak Warrior
638 Posts |
Posted - 2010-02-27 : 08:39:03
|
| Bustaz Kool,I haven't checked to see if the sqluser account has any of those permissions, as the book says not to assign any permissions to the account. The setup process is supposed to do that for you. Jaime,Yes, I'm sure it's the domain administrator account I'm login into when it authenticates. I have typed the domain name into the appropriate text box. However, when I get home, I will change the password of the local domain account to be different, just to be 100% sure.There are 10 types of people in the world, those that understand binary, and those that don't. |
|
|
|
DBA in the making
Aged Yak Warrior
638 Posts |
Posted - 2010-02-28 : 08:14:55
|
| Jaime,I double checked that the administrator account is the domain account, by changing the password for the local administrator account. It still authenticated on the original password. It really would be much simpler if the installer simply created the accounts based on the username/password/domain you entered during setup, but apparently MS don't agree.There are 10 types of people in the world, those that understand binary, and those that don't. |
|
|
|
DBA in the making
Aged Yak Warrior
638 Posts |
Posted - 2010-03-03 : 16:54:40
|
| Tap tap... Hello, is this thing on? :)There are 10 types of people in the world, those that understand binary, and those that don't. |
|
|
|
tkizer
Almighty SQL Goddess
38200 Posts |
Posted - 2010-03-03 : 18:23:07
|
| There are two different screens where it asks for credentials. The first is to authenticate you to the server. This account should be a domain account that has local admin privileges on the database server. The second screen is where it asks for the service information. The service account should have whatever permissions you'll need. We always use domain accounts with local admin privileges here too.Tara KizerMicrosoft MVP for Windows Server System - SQL Serverhttp://weblogs.sqlteam.com/tarad/Subscribe to my blog"Let's begin with the premise that everything you've done up until this point is wrong." |
|
|
|
|
|
|
|
|
Run as a Domain user account