Password Change

Question

Password Change

Maverick100877

SSCertifiable

Points: 5240
More actions
November 18, 2015 at 12:28 am

#399343

Hi,
Are there any checklist/prerequisites/best practices for changing the SQL Server Service account password. I know it is recommended to change them using configuration manager or WMI.
We are planning to use WMI - Get-wmiobject win32_service to get list of services and then change the password change() method to change the password.
Would we need to restart the service if we are using the above method or we should be good without it.

Viewing 6 posts - 1 through 5 (of 5 total)

You must be logged in to reply to this topic. Login to reply

Ant-Green SSC Guru Points: 113445 More actions · Answer 1

From the documentation the only method is to use SQL Server Config Manager.

This ensure that the new service account is assigned to the correct groups, policies and that the service master key is also resynced with the new account.

https://msdn.microsoft.com/en-GB/library/ms345578(v=sql.120).aspx

As for a restart you should be good without it, but IIRC it will continue to use the old credentials to access network shares etc until a restart. So if the old account is being removed from places the SQL box needs to access for backups etc at the same time, I would recommend a restart.

Maverick100877 SSCertifiable Points: 5240 More actions · Answer 2

I just want to change the password of the service account. The service account would still be the same.

Can we use the mentioned method in this case.

Ant-Green SSC Guru Points: 113445 More actions · Answer 3

Personally I would still make the change via config manager. Just for my own piece of mind knowing its been done that way.

Not saying it cant be done via powershell etc, just I know it always works via config manager.

Kris Gruttemeyer Ten Centuries Points: 1185 More actions · Answer 4

I would just change it from Config Manager as stated above. I've done this before and using PoSH is overcomplicating things.

I, personally, recommend a clean restart of the service afterwards. In fact, I don't believe the change will even take effect until the service is kicked.

Maverick100877 SSCertifiable Points: 5240 More actions · Answer 5

We have a lot of servers to change so doing it via configuration manager server wise would be tedious. Is there a way to call Configuration manager pragmatically and automate the password change.