Reputation: 85
File and folder permissions after changing sqlserver service account
I read this article and concluded that the file system permissions needs to be manually set when I change the service account for my SQL server instance.
So I changed the service account for my SQL server instance to a brand new local account via SQL Server Configuration Manager and got surprised that the SQL server service can start, even though I haven't set any file or folder permissions for the new account yet. So the service now runs as the local user, but that user does not have access to the default SQL data folder when I check from Windows. I can also read and write to the default backup folder. Why does it work despite the missing permissions?
Upvotes: 0
Views: 3595
Answers (2)
Reputation: 85
From this article we get the answer:
SQL Server service accounts must have access to resources. Access control lists are set for the per-service SID or the local Windows group
Upvotes: 0
Reputation: 7692
It works because you used SQL Server Configuration Manager to change the service account. It does all the extra legwork with permissions so that you don't have to.
If, on the other hand, you would use the standard "Services" snap-in found in Control Panel -> Administrative Tools, then nothing would work out of the box, and it would be a truly harrowing experience to set it all up by hand.
Upvotes: 2
Related Questions
- How to recover SQL Server ownership when NT account is not valid anymore
- SQL Server NETWORK SERVICE account permissions
- SQL Server Authentication and Folder Permissions
- Can't add file permissions need to relocate SQL Server 2012 files to separate drive
- SQL Server Express folder permissions
- SQL Server 2008 - Change permissions to database
- Permissions Issue on SQL Server 2008
- Problem with User /SQL Permissions
- .NET Folder Permission Issue
- Sql Server permissions problem