Log Shipping User Accounts and Roles
BizTalk Server log shipping is driven by a SQL Server Agent job to automate the process of restoring backups and logs. Incorrect permissions can cause restore operations performed by BizTalk Server log shipping to fail. The user account configured to restore databases must have access to the production database instance that hosts the BizTalk Management database. In most cases this means that the service account for the SQL Server Agent job driving the BizTalk Server log shipping job on the disaster recovery SQL Server instance requires a login and permissions on the production database instance that hosts the BizTalk Server management database. This assumes that the SQL Server Agent service account is configured as the job owner.
BizTalk Server includes a SQL Server role named BTS_BACKUP_USERS so that the user account configured to restore databases does not require SQL Server System Administrators permission.
When configuring the user account that will perform database restore operations as part of BizTalk Server log shipping, please verify the following:
Configure the SQL Server Agent service to run under a domain account with a mapped user configured in SQL Server Management Studio (in Security, Logins) on each SQL Server instance that hosts BizTalk Server databases restored by the BizTalk Server log shipping jobs.
Configure a SQL Server login account for this user, and assign this user to the BizTalk BTS_BACKUP_USERS SQL role on each server.
Assign this user to the SQL Server System Administrators role on the computer running SQL Server that houses the BizTalk Server management database.
The account that performs backup and restore operations must have Read and Write access to the UNC share where backup files are created.
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for