There are certain cases where the SQL Server service account (sql_svc) cannot be added to the local admin or domain admin groups. In such cases, there will be permission problems on the files for that service account. Users will notice “Access Denied” errors like the following message:
“Open failed: Could not open file E:\SQL1\MSSQL10_50.SQL1\MSSQL\DATA\master.mdf for file number 1. OS error: 5 (Access is denied).”
Solution: Perform the following:
- Copy the following script code to a file, e.g. c:\file.ksh
$LKROOT/bin/find . > $LKROOT/out/file
while read filename
do
icacls “${filename}” /grant $1:F
done < $LKROOT/out/file
$LKDROOT/bin/rm $LKROOT/out/file
Run the following command on each drive (E, F), starting at the volume. This command should be run as an admin (local or domain). This gives file permissions to that user only. SQL Server service user will then have access to the files and will not need to be added as an admin account.
E:\>c:\lk\bin\sh c:\file.ksh domain\sql_svc
Post your comment on this topic.