Domain password changed which is used to install SQLServer

Avyayah 1,211 Reputation points
2020-09-24T22:33:31.417+00:00

Will it cause any issues in sql services since the password is changed in AD. SQL Server services, SQLserver Integration service and SQLServer Agent is installed with that domain account.

SQL Server
SQL Server
A family of Microsoft relational database management and analysis systems for e-commerce, line-of-business, and data warehousing solutions.
12,318 questions
0 comments No comments
{count} votes

Accepted answer
  1. CathyJi-MSFT 21,116 Reputation points Microsoft Vendor
    2020-09-25T06:41:40.543+00:00

    Hi @Avyayah ,

    > Will it cause any issues in sql services since the password is changed in AD.

    If SQL server service, SSIS, SQL agent service are running under this domain account as below screenshot. SQL Server may lose access to some domain resources and if SQL Server stops, the service will not restart until the password is updated.

    28266-screenshot-2020-09-25-141902.jpg

    The SQL Server Database Engine and SQL Server Agent run on a computer as a service using credentials that are initially provided during setup. If the instance of SQL Server is running under a domain account and the password for that account is changed, the password used by SQL Server must be updated to the new password. If the password is not updated, SQL Server may lose access to some domain resources and if SQL Server stops, the service will not restart until the password is updated. Please refer to SCM Services - Change the Password of the Accounts Used.

    If SQL server service, SSIS, SQL agent service are not running under this domain account and the domain account is not used for SQL server login, this will not case issue in SQL server.

    Best regards,
    Cathy


    If the response is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments No comments

4 additional answers

Sort by: Most helpful
  1. Ronen Ariely 15,081 Reputation points
    2020-09-25T06:43:15.847+00:00

    Hi,

    it appears that we will not have any issues when the server is restarted.

    Issue?!? Starting the service will fail if it will be done using the old password. You must change the passwords!

    Use SQL Server configuration manager to change the passwords. Do not use services.msc for this task! You do not change the password of the user but the password which are used to authenticate the user.

    You will need to change the password in any place which is using it if it stores it.

    If you have an application that uses the old password stored it in the code or any connection to the server including the information which is used to start the services. As I wrote the authentication is done with the AD and the password is not stored inside the SQL Server (actually it might be if you connect from the SQL Server like in a case of linked server). The password might be stored in the application that try to connect to the server or to the service, and the authentication is done with the AD so the password should fit. If you change the password then you need to use the new one when authenticating the user

    In any case it is always better to test your scenario in non-production environment

    1 person found this answer helpful.
    0 comments No comments

  2. Ronen Ariely 15,081 Reputation points
    2020-09-24T22:59:50.09+00:00

    Hi,

    Domain password changed which is used to install SQLServer

    The domain or operating system user who install the server is not used to manage the server unless you configured it as LOGIN for example to be a sysadmin which most people do it during the installation. If the AD user is used to execute the service then it is managed by the AD/OS.

    Will it cause any issues in sql services since the password is changed in AD.

    If you are using Active Directory account to connect the server (AD authentication) or to execute the services, then the authentication is done with the AD and the password is not stored inside the SQL Server.

    By the way, this is one of the reason many say that using AD is more secure then using SQL Server Authentication

    https://learn.microsoft.com/en-us/sql/relational-databases/security/choose-an-authentication-mode?view=sql-server-ver15#disadvantages-of-sql-server-authentication

    ----------

    14150-image.pngRonen Ariely
    Personal Site | Blog | Facebook | Linkedin

    0 comments No comments

  3. Avyayah 1,211 Reputation points
    2020-09-25T00:12:54.34+00:00

    We have used AD account for SSIS, SQL Agent Service and SQL Server service. The username was
    changed after the installation is complete. Since the account is not stored in SQLServer, it appears that we will not have any issues when the server is restarted.
    28172-sqlserverservice.jpg

    0 comments No comments

  4. Avyayah 1,211 Reputation points
    2020-09-25T23:04:59.34+00:00

    I have changed to the old password and hope this will not cause any issues.

    0 comments No comments