- No service is listed.
- Some services are not listed.
This problem may occur after you apply some security policies to update the security settings for SQL Server 2005 services. In particular, this problem may occur after you apply a Group Policy to update the security settings.
- Open a session in the server that has SQL Server installed. Open the session by using a Windows account that is part of the Domain Administrators group.
- Download and then install the Group Policy Management Console if you do not already have the console installed.
- Open the Group Policy Managment Console. Then, select the organizational unit where SQL Server is located.
- Create a new Group Policy object or edit the existing Group Policy object that is associated with this organizational unit. To edit the existing Group Policy object, right-click Policy Object, and then select Edit. A new Group Policy Object Editor Microsoft Management Console (MMC) appears.
- In the Service Name column, double-click SQL Server (Instance_Name).
- In the SQL Server (Instance_Name) Properties dialog box, click to select the Define this policy setting check box, select the appropriate startup mode, and then click Edit Security.
- In the Security for SQL Server (Instance_Name) dialog box, click NETWORK SERVICE under Group or user names.
Note If the NETWORK SERVICE account is not listed, add the account before you perform this step.
- Under Permissions for NETWORK SERVICE, click to select the Read check box in the Allow column, and then click OK.
- Repeat steps 5 through 9 to add the READ permission to the NETWORK SERVICE account for other SQL Server 2005 services.
You can run the following command at a command prompt to extract the information about the default DACL for a SQL Server 2005 service:
sc \\[servername] sdshow SQLService_Name
- SELECT * FROM RegServices
- SELECT * FROM SqlService
- The SQL Server Database Engine service
- The SQL Server 2005 Reporting Services service
- The SQL Server 2005 FullText Search service
- The SQL Server 2005 Agent service
- The SQL Server 2005 Integration Services service
- The SQL Server 2005 Analysis Services service
The Wmiprvse.exe process in which the Sqlmgmprovider.dll file is loaded runs under the security context of the NETWORK SERVICE account. In the Wmiprvse.exe process, a thread executes the code in the Sqlmgmprovider.dll file. When you run these tools, this thread in the Wmiprvse.exe process impersonates the security context of the user who is running these tools.
Additionally, information about some SQL Server 2005 services is still extracted under the security context of NETWORK SERVICE account. If the NETWORK SERVICE account has insufficient permissions to extract the service information, the information about the SQL Server 2005 services is not present in the result set for the WMI queries that are mentioned previously. Therefore, the ManagedComputer SMO object returns an empty list or a partial list of SQL Server 2005 services to these tools.
Article ID: 941823 - Last Review: Feb 9, 2010 - Revision: 1