July 31, 2009 at 10:11 am
I should have just set the account during install... I didn't, however, and now I am trying to simply change my SQL Service Account to use a domain account within the SQL Server Configuration Manager. When clicking OK I get a WMI error. I tried to manually set everything up, Account access at server, DB, roles, and set the account in services.msc...however, that doesn't work either.
I found this hit on the Internet (one hit of MANY for this error). Based on my errors this seemed the likely fix:
http://social.msdn.microsoft.com/Forums/en-US/sqlexpress/thread/b308d9c8-6aba-4b3b-9b32-f919816d1be2
But, alas, it is not.
Hopefully someone out there has seen this.
Windows Server 2003 R2 64 bit
SQL Server 2008 64 bit SP1.
Errors when changing from local system...
Event Type:Error
Event Source:MSSQLSERVER
Event Category:Server
Event ID:15466
Date:7/31/2009
Time:12:02:07 PM
User:N/A
Computer:RALSQL08
Description:
An error occurred during decryption.
Event Type:Error
Event Source:MSSQLSERVER
Event Category:Server
Event ID:17190
Date:7/31/2009
Time:12:02:07 PM
User:N/A
Computer:RALSQL08
Description:
Initializing the FallBack certificate failed with error code: 1, state: 1, error number: -2146893802.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 26 43 00 00 10 00 00 00 &C......
0008: 09 00 00 00 52 00 41 00 ....R.A.
0010: 4c 00 53 00 51 00 4c 00 L.S.Q.L.
0018: 30 00 38 00 00 00 00 00 0.8.....
0020: 00 00 ..
Event Type:Information
Event Source:MSSQLSERVER
Event Category:Server
Event ID:26017
Date:7/31/2009
Time:12:02:07 PM
User:N/A
Computer:RALSQL08
Description:
Unable to initialize SSL encryption because a valid certificate could not be found, and it is not possible to create a self-signed certificate.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: a1 65 00 00 0a 00 00 00 ¡e......
0008: 09 00 00 00 52 00 41 00 ....R.A.
0010: 4c 00 53 00 51 00 4c 00 L.S.Q.L.
0018: 30 00 38 00 00 00 00 00 0.8.....
0020: 00 00 ..
Event Type:Error
Event Source:MSSQLSERVER
Event Category:Server
Event ID:17182
Date:7/31/2009
Time:12:02:07 PM
User:N/A
Computer:RALSQL08
Description:
TDSSNIClient initialization failed with error 0x80092004, status code 0x80. Reason: Unable to initialize SSL support. Cannot find object or property.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 1e 43 00 00 10 00 00 00 .C......
0008: 09 00 00 00 52 00 41 00 ....R.A.
0010: 4c 00 53 00 51 00 4c 00 L.S.Q.L.
0018: 30 00 38 00 00 00 00 00 0.8.....
0020: 00 00 ..
Event Type:Error
Event Source:MSSQLSERVER
Event Category:Server
Event ID:17182
Date:7/31/2009
Time:12:02:07 PM
User:N/A
Computer:RALSQL08
Description:
TDSSNIClient initialization failed with error 0x80092004, status code 0x1. Reason: Initialization failed with an infrastructure error. Check for previous errors. Cannot find object or property.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 1e 43 00 00 10 00 00 00 .C......
0008: 09 00 00 00 52 00 41 00 ....R.A.
0010: 4c 00 53 00 51 00 4c 00 L.S.Q.L.
0018: 30 00 38 00 00 00 00 00 0.8.....
0020: 00 00 ..
Event Type:Error
Event Source:MSSQLSERVER
Event Category:Server
Event ID:17826
Date:7/31/2009
Time:12:02:07 PM
User:N/A
Computer:RALSQL08
Description:
Could not start the network library because of an internal error in the network library. To determine the cause, review the errors immediately preceding this one in the error log.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: a2 45 00 00 12 00 00 00 ¢E......
0008: 09 00 00 00 52 00 41 00 ....R.A.
0010: 4c 00 53 00 51 00 4c 00 L.S.Q.L.
0018: 30 00 38 00 00 00 00 00 0.8.....
0020: 00 00 ..
Event Type:Error
Event Source:MSSQLSERVER
Event Category:Server
Event ID:17120
Date:7/31/2009
Time:12:02:07 PM
User:N/A
Computer:RALSQL08
Description:
SQL Server could not spawn FRunCM thread. Check the SQL Server error log and the Windows event logs for information about possible related problems.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: e0 42 00 00 10 00 00 00 àB......
0008: 09 00 00 00 52 00 41 00 ....R.A.
0010: 4c 00 53 00 51 00 4c 00 L.S.Q.L.
0018: 30 00 38 00 00 00 00 00 0.8.....
0020: 00 00 ..
July 31, 2009 at 10:15 am
I seem to remember that you need to change the acount from the SQL Server Configuration Manager. I think it was related to the Server Master Key not being able to be decrypted..
CEWII
July 31, 2009 at 10:17 am
Can't change it from SQL Server Configuration Manager. When I try I get: Cannot find object or property [0x80092004]
July 31, 2009 at 1:34 pm
I even tried reinstalling SQL and specifying the domain accounts during setup...the install then failed. Reinstalled with defaults and tried it pre SP1...same problem.
I'm really thinking it's SSL...just not sure why. Here is a consistent error when changed to a domain account:
"Unable to initialize SSL encryption because a valid certificate could not be found, and it is not possible to create a self-signed certificate."
I've found lots of links outlining my issue that advise how to turn off forced encryption - which i've done. For some reason it keeps trying to do something with SSL. I found another tidbit on the Internet stating that the message, "A self-generated certificate was successfully loaded for encryption.", occurs when a system is in Mixed Authentication Mode - that some best effort security measure is put in place for SQL auth.
So, it sounds as if a certificate is self-generated by virtue of being in Mixed Mode and that self generation cannot occurr for domain accounts - thereby blowing up and giving me decryption errors right before the service fails to start.
That doesn't sound right, does it?
Is there anyone out there with SQL Server 2008 64 bit running in Mixed Mode with a domain account running the SQL Server Service? Did you have problems?
Please note that I am able to use the account for the SQL Agent.
Also, note that I have turned off forced encrypton at the propery level of network protocols for my sql instance. This had no effect.
Anyone know of anything else that can be done to disable this SSL attempt???
This is a brand new server. No SSL has ever touched it.
Thanks
Viewing 4 posts - 1 through 3 (of 3 total)
You must be logged in to reply to this topic. Login to reply