Release notes
Add the SeSecurityPrivilege privilege to the user account (for SQL Server of SMB shares)
Suggest changes
-
PDF of this doc site
-
Cluster administration
-
Volume administration
-
Logical storage management with the CLI
-
-
NAS storage management
-
Configure NFS with the CLI
-
Manage NFS with the CLI
-
Manage SMB with the CLI
-
Manage file access using SMB
-
-
-
Security and data encryption
-
Data protection and disaster recovery
-
Collection of separate PDF docs
Creating your file...
The domain user account used for installing the SQL server must be assigned the “SeSecurityPrivilege” privilege to perform certain actions on the CIFS server that require privileges not assigned by default to domain users.
The domain account used for installing the SQL Server must already exist.
When adding the privilege to the SQL Server installer's account, ONTAP might validate the account by contacting the domain controller. The command might fail if ONTAP cannot contact the domain controller.
-
Add the “SeSecurityPrivilege” privilege:
vserver cifs users-and-groups privilege add-privilege -vserver vserver_name -user-or-group-name account_name -privileges SeSecurityPrivilegeThe value for the
-user-or-group-nameparameter is the name of the domain user account used for installing the SQL Server. -
Verify that the privilege is applied to the account:
vserver cifs users-and-groups privilege show -vserver vserver_name ‑user-or-group-name account_name
The following command adds the “SeSecurityPrivilege” privilege to the SQL Server installer's account in the EXAMPLE domain for storage virtual machine (SVM) vs1:
cluster1::> vserver cifs users-and-groups privilege add-privilege -vserver vs1 -user-or-group-name EXAMPLE\SQLinstaller -privileges SeSecurityPrivilege cluster1::> vserver cifs users-and-groups privilege show -vserver vs1 Vserver User or Group Name Privileges --------- --------------------- --------------- vs1 EXAMPLE\SQLinstaller SeSecurityPrivilege
