Azure AD Connect bug?

Anonymous
2020-12-09T13:49:17.873+00:00

Hello everyone,

We have encountered what I can only assume is a bug. Our Azure AD Connect is trying to connect to a SQL database using the machine name as user name, 'DOMAIN\MACHINENAME$'. Everything is working correctly except our SQL logs are getting spammed with failed logon errors. Anyone else experienced the same issue?

Found a similar post but no answer: https://learn.microsoft.com/en-us/answers/questions/9431/msdn-redirect-bug-azure-ad-connect-attempting-to-c.html

Best regards,
MJ

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,681 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. 2020-12-09T18:13:40.7+00:00

    Hello, please, as a sysadmin (EG: sa user), run the following TSQL query in the target SQL Server.

       CREATE LOGIN [DOMAIN\MACHINENAME$] FROM WINDOWS WITH DEFAULT_DATABASE= master  
       GO  
       ALTER SERVER ROLE [dbcreator]   
       ADD MEMBER [DOMAIN\MACHINENAME$]  
       GO  
    

    Alternatively and to keep a more tight access control, you can create the ADSync database out of band. For this you need to only create the login and grant it db_owner database permission.

    Please let me know if you need more help. If the answer was helpful to you, please accept it and, optionally, provide feedback so that other members in the community can benefit from it.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.