Re: xp_cmdshell generates "Login failed for user 'SVCtoronto'." when run in SQLAgent job.
From: Wayne Snyder (wayne.nospam.snyder_at_mariner-usa.com)
Date: 01/27/05
- Next message: Regevnet Support: "view changed"
- Previous message: Bhavesh: "Getting Windows Login-name and Domain name from SQL Server 2000 using T-SQL"
- In reply to: Charles Snelgrove: "xp_cmdshell generates "Login failed for user 'SVCtoronto'." when run in SQLAgent job."
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 27 Jan 2005 08:52:32 -0500
XP_Cmdshell is only available to SQL logins who are SQL administrators by
default, and the security context that ALL xp_cmdshell jobs run under the
context that SQL Agent uses for SQL Administrators.
A SQL Administrator can configure xp_cmdshell to be available to non-admin
sql logins, and provide a single NT login which will be used for the
credentials for all of those people....
So xp_cmdshell runs under either the SQL Agent login ( for sql admins) or a
single pre-configure NT login ( for non admins.)
-- Wayne Snyder, MCDBA, SQL Server MVP Mariner, Charlotte, NC www.mariner-usa.com (Please respond only to the newsgroups.) I support the Professional Association of SQL Server (PASS) and it's community of SQL Server professionals. www.sqlpass.org "Charles Snelgrove" <charles.snelgrove@brooks.com> wrote in message news:6dcfa2e4.0501261337.ffb57fc@posting.google.com... > I am trying to upgrade our SQL 7 platform from NT4 Server to Windows > 2000 Server (while staying at SQL 7). I have installed SQL 7 on a > Windows 2000 Server with the latest SP (7.00.1094) and have copied > everything over from the original server (restored from backup > devices), including stored procedures, logins, application db's, > SQLAgent jobs, etc. Everything seems to be working properly except > for the SQL Server Agent jobs, which invoke store procedures that make > calls to "xp_cmdshell", which fail with the error "Login failed for > user 'SVCtoronto'." > > The account SVCtoronto is a domain account (in an Active Directory) > which belongs to the Administrator's group on the server and is used > to run MSSQLServer and SQLServerAgent services. > > If I use the local System account to run these services, the SQL > Server Agent jobs run properly without any errors. > > Any suggestions would be greatly appreciated. > > /Charles
- Next message: Regevnet Support: "view changed"
- Previous message: Bhavesh: "Getting Windows Login-name and Domain name from SQL Server 2000 using T-SQL"
- In reply to: Charles Snelgrove: "xp_cmdshell generates "Login failed for user 'SVCtoronto'." when run in SQLAgent job."
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
