Looking for detailed information on what resources the MS SQL Engine reads, writes, and modifies in order to operate as designed. Read this carefully. I've been on the search but am not finding anything quickly.
I believe if a Windows domain account is being used for any of the SQL Engine services that account should not have any granular permission settings on any folders related to SQL operations, nor any granular settings on the registry or any where else.
Should be FULL CONTROL. Microsoft wrote the program to run the way it does and we should not be the judge of what permissoins a service account should have so the program runs correctly.
I am troubleshooting unstable SQL issues and I am finding little tips here and there pointing in my mind to be the service account having too many restrictions on the SQL folders, Windows registry, and everything else.
My opinion would be, any domain account used as a SQL service account should have FULL CONTROLL on any folders used for SQL operations and FULL CONTROLL on registry operations and be part of NO group policies.
If anyone knows where I may find detailed information that is written in GOLD as to what permissions SQL needs to run, let me know. Send a link. I think there should be NO restrictions. I haven't met anybody yet that really understand
View Complete Post