Forum Discussion
Configuration Manager MP in untrusted domain
We are trying to set up a Management Point in an untrusted domain and failing during the SQL communication. I've followed the guidelines on multiple forums without success.
Currently we configured a local account, in the SQL server instance, which it's also the Primary Site. We've added the 'smsdbrole_MP' membership.
To install the MP role, we used an account from the untrusted domain which is admin in the remote server. The installation was successful.
For the DB communication account we set this local account, and the error we are getting is this (from the remote Site System's BgbServer.log)
Total online clients: 0 (TCP: 0 HTTP: 0) SMS_NOTIFICATION_SERVER 9/2/2023 7:04:53 AM 9528 (0x2538)
Retrieving online resync flag from database... SMS_NOTIFICATION_SERVER 9/2/2023 7:05:53 AM 9528 (0x2538)
LogonUser to <The local account here> SMS_NOTIFICATION_SERVER 9/2/2023 7:05:53 AM 9528 (0x2538)
ERROR: Can't retrieve SQL connection. Exception: System.Data.SqlClient.SqlException (0x80131904): Login failed. The login is from an untrusted domain and cannot be used with Integrated authentication.~~ at System.Data.SqlClient.SqlInternalConnectionTds..ctor(DbConnectionPoolIdentity identity, SqlConnectionString connectionOptions, SqlCredential credential, Object providerInfo, String newPassword, SecureString newSecurePassword, Boolean redirectedUserInstance, SqlConnectionString userConnectionOptions, SessionData reconnectSessionData, DbConnectionPool pool, String accessToken, Boolean applyTransientFaultHandling, SqlAuthenticationProviderManager sqlAuthProviderManager)~~ at System.Data.SqlClient.SqlConnectionFactory.CreateConnection(DbConnectionOptions options, DbConnectionPoolKey poolKey, Object poolGroupProviderInfo, DbConnectionPool pool, DbConnection owningConnection, DbConnectionOptions userOptions)~~ at System.Data.ProviderBase.DbConnectionFactory.CreatePooledConnection(DbConnectionPool pool, DbConnection owningObject, DbConnectionOptions options, DbConnectionPoolKey poolKey, DbConnectionOptions userOptions)~~ at System.Data.ProviderBase.DbConnectionPool.CreateObject(DbConnection owningObject, DbConnectionOptions userOptions, DbConnectionInternal oldConnection)~~ at System.Data.ProviderBase.DbConnectionPool.UserCreateRequest(DbConnection owningObject, DbConnectionOptions userOptions, DbConnectionInternal oldConnection)~~ at System.Data.ProviderBase.DbConnectionPool.TryGetConnection(DbConnection owningObject, UInt32 waitForMultipleObjectsTimeout, Boolean allowCreate, Boolean onlyOneCheckConnection, DbConnectionOptions userOptions, DbConnectionInternal& connection)~~ at System.Data.ProviderBase.DbConnectionPool.TryGetConnection(DbConnection owningObject, TaskCompletionSource`1 retry, DbConnectionOptions userOptions, DbConnectionInternal& connection)~~ at System.Data.ProviderBase.DbConnectionFactory.TryGetConnection(DbConnection owningConnection, TaskCompletionSource`1 retry, DbConnectionOptions userOptions, DbConnectionInternal oldConnection, DbConnectionInternal& connection)~~ at System.Data.ProviderBase.DbConnectionInternal.TryOpenConnectionInternal(DbConnection outerConnection, DbConnectionFactory connectionFactory, TaskCompletionSource`1 retry, DbConnectionOptions userOptions)~~ at System.Data.SqlClient.SqlConnection.TryOpenInner(TaskCompletionSource`1 retry)~~ at System.Data.SqlClient.SqlConnection.TryOpen(TaskCompletionSource`1 retry)~~ at System.Data.SqlClient.SqlConnection.Open()~~ at Microsoft.ConfigurationManager.ManagedBase.SqlConnectionBuilder.GetSqlConnection(String sqlServerName, String sqlInstanceAndDatabaseName, String applicationName, SqlConnectionSecurityLevel securityLevel)~~ at Microsoft.ConfigurationManager.BgbServerChannel.BgbServerBase.RetrieveSqlConnection()~~ClientConnectionId:f73b5c43-a2dc-44e8-8ec9-f0826316ddd3~~Error Number:18452,State:1,Class:14 SMS_NOTIFICATION_SERVER 9/2/2023 7:05:54 AM 9528 (0x2538)
ERROR: Don't have SQL connection when get resync flag SMS_NOTIFICATION_SERVER 9/2/2023 7:05:54 AM 9528 (0x2538)
Total online clients: 0 (TCP: 0 HTTP: 0) SMS_NOTIFICATION_SERVER 9/2/2023 7:05:54 AM 9528 (0x2538)
The local account keeps getting locked out, and yes we did checked the password multiple times.
Any idea what could be going on?
Thank you!
5 Replies
No RepliesBe the first to reply