"<DOMAIN<USER NAME> could not be authenticated" error in Microsoft Dynamics SL

This article provides a resolution for the issue that you may receive the <DOMAIN\<USER NAME> could not be authenticated error when using Microsoft Dynamics SL.

Applies to:   Microsoft Dynamics SL 2011 Service Pack 1, Microsoft Dynamics SL 2011
Original KB number:   2770709


You receive the following error message in Microsoft Dynamics SL:

<DOMAIN\<USER NAME> could not be authenticated. Please enter a valid Windows User Name with permissions to the domain SQL Server is running.

This message may occur of one of the following is true:

  • You're upgrading Microsoft Dynamics SL and you select Windows authentication as the authentication type.
  • You are changing the authentication type from SQL Server authentication to Windows authentication.


The SQL Server Service user doesn't have READ permissions to the Domain User Account objects in Active Directory.


Grant the SQL Server Service user READ permissions to the user account objects or change the SQL Server Service user to a domain account that has READ permissions. To verify the SQL Server Service User, follow these steps:

Steps Details
1. Sign in to Windows on the computer where SQL Server is installed.
2. Open Control Panel.
3. Select Administrative Tools, and then select Services.
4. Right-click SQL Server (MSSQLSERVER), and then select Properties.
5. On the Log On tab, note the account.


The account must have READ permissions to the domain user account objects in Active Directory. If Local System account is selected, the Computer object in Active Directory for the computer that is running SQL Server must have READ permissions to the Domain User Account objects in Active Directory.