Configuring the Nodes - Security
On each node, perform the following
Local Administrators
net localgroup administrators domain.com\svc-acc /add
Before:
After:
SQL Security
Add the service account user to sysadmin role on SQL server.
USE MASTER GO CREATE LOGIN [domain.com\svc-acc] FROM WINDOWS; GO ALTER SERVER ROLE sysadmin ADD MEMBER [domain.com\svc-acc] ; GO
Before:
After:
SQL Service Accounts
Alter services so they use the service accounts you created. Launch and elevated Command Prompt and execute the following:
sc.exe config "MSSQLSERVER" obj= "its\svc-azrsqlstg-acc" password= "P@ssword" sc.exe config "SQLSERVERAGENT" obj= "its\svc-azrsqlstg-acc" password= "P@ssword" net stop MSSQLSERVER /y net start SQLSERVERAGENT
Before:
Execute:
After:
The following needs to be performed on each node in the cluster, plus each additional node that gets added.