This was the first experiment with gMSA account in my lab and I faced an interesting issue. In my lab environment, I have a complete domain server and member servers. Once I configured gMSA for SQL Server service and restarted the machine, SQL Service didn’t start automatically even though it was set for an automatic startup as shown below.
There was no ERRORLOG because SQL didn’t start. Event log showed me a bunch of Errors which I have listed below:
| Event ID | Source | Details |
| 7038 | Service Control Manager | The MSSQL$SQL_XFBIZ service was unable to log on as SQLAuthority\gmsaQUICK$ with the currently configured password due to the following error:
The specified domain either does not exist or could not be contacted.
To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). |
| 7034 | Service Control Manager | The SQL Server (MSSQLSERVER) service terminated unexpectedly. It has done this 1 time(s). |
| 700 | Service Control Manager | The MSSQLSERVER service failed to start due to the following error:
The service did not start due to a logon failure.
|
The interesting messages out of all are:
- The specified domain either does not exist or could not be contacted.
- The service did not start due to a logon failure.
WORKAROUND/SOLUTION
From the messages its clear that server was not able to contact the domain controller when it was getting started along with server startup. There are few things, which I am aware of, which would help.
- Set SQL Server Service to “Automatic (Delayed Start)” as shown below.
- Using registry editor, set the dependencies of SQL Server service on Netlogon and W32time service. Here are the steps:
- Go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSSQLSERVER
- Look for “DependOnService” on the right pane.
- Edit the values and add W32Time and Netlogon as shown below. Note: KEYISO was already there.
- Close the settings and check via services to make sure dependency is set correctly.
After doing above, I never faced the same issue on this server.
Have you ever faced the same issue? Is there any other solution which you found? Please share via comments and I would write a blog with due credit.
Reference: Pinal Dave (https://blog.sqlauthority.com)
14 Comments. Leave new
I faced the same issue when implemented gmsa in our shop but used the same workaround of setting the dependencies. That made the trick and liked it better than the delayed start.
Hi Pinal
Thanks for sharing this post , have you seen this link.
https://support.microsoft.com/en-us/help/2998082/gmsa-based-services-can-t-log-on-after-a-password-change-in-a-windows.
It is strange that the event log message did not mention the dependency also the step by step guide by Microsoft does not mention adding the dependency. A lot of times these kind of SQL Server errors and behaviors is dependent on the specific environment.
Why would it need Netlogon and windows time as a dependency
Hello,
I also ran in the problem when my SQL Service did not start after reboot using managed service accounts.
I solved the problem when I modified the following registry value (maybe the key difffers according to your instance name or the key might be missing entirely):
Key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSSQLSERVER
Value: ServiceAccountManaged
Datatype: REG_BINARY
On one working machine the content of this key was
01 00 00 00
The other machine which was NOT working had its value set to
00 00 00 00
Note: You have to reboot your OS after you modified the registry value.
I don’t know why this happened, but I tried several reboots and every time the SQL Server Service starts fine even without configuring any service dependencies.
Hope this helps!
Kind Regards,
Michael
Thank you, Michael
After trying everything i updated the registry as you suggested which fixed my issue.
Thank you
In Production server i have deployed the dll of dot net files and using entity framework ,so ,we have taken the back up Databases and restored after the deployment,every thing is working fine after deployment ,2 days later ,planned system reboot is performed after that sql instance not started automatically,and showing
Issue :
FCB::Open failed: Could not open file C:\Program Files\Microsoft SQL Server\MSSQL11.MSSQLSERVER\MSSQL\DATA\ReportServer.mdf for file number 1. OS error: 32(The process cannot access the file because it is being used by another process.). [Policy: MSSQLServer_EventLog_Errors
Solution:
After restarting sql services from services.msc started working.
I want to know the reason.Please let me know what might be the reason.
I had the same issue but in a different context: standalone WIndows 10 PC without AD. I followed your steps, the dependency on Netlogon gave an error when SQL Server tried to start. I removed it, only keeping the Windows Time dependency, and it solved my issue. Thanks!
This was the fix to the same issue I was having. Simple solution that solved a nagging problem. Thank You!
I had faced a similar issue once with dedicated service account for SQL server. SQL services did not reboot even though it was set to start automatically.
If I set SQL Server, Agent Services and ALTER AUTHORIZATION
ON ENDPOINT::Hadr_endpoint to gMSA account, what will happen when password changes in AD in the middle of running jobs/updates or change the primary for Availability group?
Uh, I have NEVER seen the option for “Automatic – Delayed” in the Start Mode for SQL Server, and I have been managing SQL for 20 years. Is it an Enterprise option only? What version of SQL Server did you use for that screen shot? Did that screen shot come from SQL Configuration Manager?
“1. Set SQL Server Service to “Automatic (Delayed Start)” as shown below.” My screen for SQL Configuration Manager is WAY different than yours.
I really want to experiment with this option, but can’t fine it anywhere. Please help.
Thanks
@Todd C: The SQL Server (MSSQLSERVER) Properties (Local Computer) screenshots are from the Windows Services app, not SQL Server Configuration Manager.
I know this is several years old but just wanted to come and say thank you for this fix. I recently had this issue pop up on one of my server running SQL and have never run into this issue previously. I beat my head against the wall trying to figure this out. Thanks again.
The other could be GPO setting always wait for the network at computer start up and logon, and is found under administrative templates> system>logon.
Thank you for the detailed post.
Actually , NO NEED to set “Automatic (Delayed Start)”. Just set the dependencies “W32time & NetLogon” in the registry and restart the server will do the trick.
Issue resolved.