After migrating to Windows 11 - Cannot bulk load because the file could not be opened. Operating system error code 5 (Aaccess is denied)

DoveConnieDES-3786 1

I just moved to a Windows 11 PC and now when using SSMS and I try to do a Bulk Insert into a SQL 2017 database, I get this error. Cannot bulk load because the file could not be opened. Operating system error code 5 (Aaccess is denied)

I can do the same bulk insert on my Windows 10 machine without any issues.

I have verified permissions. I am logging into SSMS as a sysadmin.

Has anyone else ran into this issue?

Erland Sommarskog 112.7K Reputation points MVP

2024-07-08T20:46:01.1066667+00:00

Where is SQL Server located? On your machine or a server? And where is the file located? On the same machine as SQL Server or on a file share?
DoveConnieDES-3786 1 Reputation point

2024-07-08T20:53:42.87+00:00

SSMS is on my PC, SQL Server is on a server that I have access to, the file is on another server. I have checked permissions.

The account I login to SSMS with has full access to the file.

The service account that SQL runs under has full access to the file.

I can login to a Windows 10 PC with same login and it works great,, just not when I login to a Windows 11 PC
LucyChenMSFT-4874 5,060 Reputation points

2024-07-11T02:02:34.8566667+00:00

Hi @DoveConnieDES-3786,

We haven't heard any response from you yet.

Is this issue solved now? If you have any questions, please feel free to share with us.

May I humbly suggest that you accept Answer if they helped. It may help others who see the thread in seek of help.

Your action would be helpful to other users who encounter the same issue and read this thread. :)

Thanks for your understanding. Wish you have a nice day!

Best regards,

Lucy Chen

4 answers

Erland Sommarskog 112.7K Reputation points MVP

2024-07-08T22:06:47.0766667+00:00
So this is a double-hop issue. That is, you authenticate to SQL Server, and then SQL Server impersonates you when running BULK INSERT. But SQL Server must somehow pass your security token to the machine with the file share.

A base requirement is that the query:

SELECT auth_scheme FROM sys.dm_exec_connections WHERE session_id = @@spid

must return KERBEROS. If it returns NTLM, it can never work. If you have KERBEROS, there are still SPNs and that, which I am not very good at, which must be in place.

I seem to recall that more people have reported that they have had these sort of problems with Windows 11 clients, so maybe things need to be set up differently when Windows 11 is in the mix.
Please sign in to rate this answer.

0 comments No comments
Sign in to comment

Use comments to ask for clarification, additional information, or improvements to the question.
Bruce (SqlWork.com) 66,706 Reputation points

2024-07-08T22:53:32.45+00:00

as suggested, most likely kerberos is not being used. there are two common causes:- windows 11 not defaulting to kerberos on autologin. google for registry settings- windows defender blocking kerberos to the desired SPN
Please sign in to rate this answer.

0 comments No comments
Sign in to comment

Use comments to ask for clarification, additional information, or improvements to the question.
LucyChenMSFT-4874 5,060 Reputation points

2024-07-09T02:02:22.5866667+00:00

Hi @DoveConnieDES-3786,

Thank you for reaching out and welcome to Microsoft Q&A!

In addition to Erland's answer, please refer to this article, it shows the cause of this issue and how to resolve it.

Here is an issue like yours, you can check it out to understand more! Hope this can help you well.

Feel free to share your issue here if you have any concerns.

Best regards,

Lucy Chen

If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

Note: Please follow the steps in our Documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

https://docs.microsoft.com/en-us/answers/support/email-notifications
Please sign in to rate this answer.
DoveConnieDES-3786 1 Reputation point

2024-07-09T13:32:38.0266667+00:00

I had already reviewed this document and everything appears to be set up correctly. I checked the sys.dm_exec_connections and my connection shows KERBEROS in the auth_scheme field

Erland Sommarskog 112.7K Reputation points MVP

2024-07-09T19:58:35.96+00:00

I would recommend that you watch David Postlewaite's presentation about Kerberos. I still have not gotten it all myself, but I understand more after having listened to him a few times: https://www.youtube.com/watch?v=oY9-qctTMwQ

LucyChenMSFT-4874 5,060 Reputation points

2024-07-15T06:04:05.9333333+00:00

Hi @DoveConnieDES-3786,

We haven't heard any response from you yet.

Is this issue solved now? If you have any questions, please feel free to share with us.

May I humbly suggest that you accept Answer if they helped. It may help others who see the thread in seek of help.

Your action would be helpful to other users who encounter the same issue and read this thread. :)

Thanks for your understanding. Wish you have a nice day!

Best regards,

Lucy Chen

Deleted

This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
Sign in to comment

Use comments to ask for clarification, additional information, or improvements to the question.
DoveConnieDES-3786 1 Reputation point

2024-07-11T13:24:52.0266667+00:00

So far the issue has not been resolved. We have looked at the various info posted and everything is set properly. We did more testing yesterday and it is starting to point to a possible VPN issue. I will know more after Friday when additional testing can be done.

Thank you everyone that has offered assistance.
Please sign in to rate this answer.
LucyChenMSFT-4874 5,060 Reputation points

2024-07-25T02:13:26.3866667+00:00

Hi @DoveConnieDES-3786,

Could you please tell us if there is any new progress on this issue?

We are still very concerned about your issue!

In addition, I don't want to nag you, but maybe my answer was helpful. May I humbly suggest that please accept Answer if they helped.

Your action would be helpful to other users who encounter the same issue and read this thread.

The links and methods we provide will also help them resolve their issue or follow up this issue with us together!

Thanks for your understanding. Your encouragement and recognition are the driving force for our progress!

DoveConnieDES-3786 1 Reputation point

2024-07-25T13:45:26.97+00:00

We have not been able to resolve the issue. We have gone through all the steps that everyone here has mentioned and have not had any resolution. For now I guess this question can be closed without a resolution.

LucyChenMSFT-4874 5,060 Reputation points

2024-07-26T01:17:16.37+00:00

Hi @DoveConnieDES-3786,

Thanks for your kindly feedback!

We well concerned about this issue and update the latest progress here!

I don't want to nag you, but could you please accept one of the answers? Your action would be helpful to other users who encounter the same issue and read this thread.

Others may have different results and solutions. In this way, we can follow up on this issue together!

Thanks for your understanding!

Best regards,

Lucy Chen

DoveConnieDES-3786 1 Reputation point

2024-07-26T12:53:50.61+00:00

But I don't want to accept an answer that did not resolve the issue. That would be misleading to others who may have the same issue. So far none of the answers that have been given has resolved the issue.
Sign in to comment

Use comments to ask for clarification, additional information, or improvements to the question.

Share via

After migrating to Windows 11 - Cannot bulk load because the file could not be opened. Operating system error code 5 (Aaccess is denied)

4 answers

Your answer