When you try to star the MSSQL service using a Managed Service Account and it does not start, you get MSSQLServer Event ID 26014.
After some Google searching (a lot, actually) I came across this procedure which seems to have fixed it:
- First we need to find the name of the service account used by the instance of SQL Server. It will probably be something like ‘SQLServerMSSQLUser$[Computer_Name]$[Instance_Name]‘.
- One way to do this is to navigate to the installation directory or your SQL Instance. By default SQL Server is installed at C:\Program Files\Microsoft SQL Server\MSSQL10_50.InstanceName.
- Right click on the MSSQL folder and click Properties.
- Click the Security tab and write down the user in the Group or user names window that matches the pattern of ‘SQLServerMSSQLUser$[Computer_Name]$[Instance_Name]‘.
- Now, open the Microsoft Management Console (MMC) by click Start -> Run, entering mmc and pressing Enter.
- Add the Certificates snap-in by clicking File -> Add/Remove Snap-in… and double clicking the Certificates item (Note: Select computer account and Local computer in the two pages on the wizard that appears.
- Click Ok.
- Expand Certificates (Local Computer) -> Personal -> Certificates and find the SSL certificate you imported.
- Right click on the imported certificate (the one you selected in the SQL Server Configuration Manager) and click All Tasks -> Manage Private Keys…
- Click the Add… button under the Group or user names list box.
- Enter the SQL service account name that you copied in step 4 and click OK.
- By default the service account will be given both Full control and Read permissions but it only needs to be able to Read the private key. Uncheck the Allow Full Control option.
- Click OK.
- Close the MMC and restart the SQL service.
Got a project that needs expert IT support?
From Linux and Microsoft Server to VMware, networking, and more, our team at CR Tech is here to help.
Get personalized support today and ensure your systems are running at peak performance or make sure that your project turns out to be a successful one!
CONTACT US NOW