Answered by:
Migration Account Privileges and why it's required

-
Hi,
I am trying to understand why the Account (Source Site Database Account) used in migration require the permission of execute?
- Source Site Account: Read permission to the SMS Provider for the specified top-level site in the source hierarchy.
- Source Site Database Account: Read and Execute permission to the SQL Server database for the specified top-level site in the source hierarchy.
Why do you need execute privileges on the source database?
Thanks in advance
- Edited by DIFFMEISTER Wednesday, March 7, 2018 11:43 PM
Question
Answers
-
to execute some stored procedures and alike.
Garth Jones
Blog: http://www.enhansoft.com/blog Old Blog: http://smsug.ca/blogs/garth_jones/default.aspx
Twitter: @GarthMJ Book: System Center Configuration Manager Reporting Unleased
- Marked as answer by DIFFMEISTER Friday, March 9, 2018 1:28 PM
-
Hi,
https://technet.microsoft.com/en-us/library/gg712275.aspx?f=255&MSPPError=-2147217396
Just found above statement when reading Prerequisites for migration. It appears that it needs execute permission for running stored procedure to delete DPs, perhaps below are related:
- spDeleteAllMigrationDistributionPoints,
- spDeleteMigrationDistributionPoint,
- spDeleteMigrationDPAndBoundaryGroup.
The log file to troubleshoot migration would be migmctrl.log.
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.
- Edited by Frank DongModerator Thursday, March 8, 2018 6:42 AM
- Marked as answer by DIFFMEISTER Friday, March 9, 2018 1:28 PM
-
-
migmctrl.log and smsprov.log would show what's happening. I cannot think of any deletions (except the one already mentioned) though.
Torsten Meringer | http://www.mssccmfaq.de
- Marked as answer by DIFFMEISTER Friday, March 9, 2018 1:28 PM
-
thanks Torsten,
I need this information for security clearance from the global organization,.. so I need it prior to execution, have sample logs I can refer?
Thanks,
Michael.
Garth Jones
Blog: http://www.enhansoft.com/blog Old Blog: http://smsug.ca/blogs/garth_jones/default.aspx
Twitter: @GarthMJ Book: System Center Configuration Manager Reporting Unleased
- Marked as answer by DIFFMEISTER Friday, March 9, 2018 1:29 PM
All replies
-
to execute some stored procedures and alike.
Garth Jones
Blog: http://www.enhansoft.com/blog Old Blog: http://smsug.ca/blogs/garth_jones/default.aspx
Twitter: @GarthMJ Book: System Center Configuration Manager Reporting Unleased
- Marked as answer by DIFFMEISTER Friday, March 9, 2018 1:28 PM
-
-
Hi,
https://technet.microsoft.com/en-us/library/gg712275.aspx?f=255&MSPPError=-2147217396
Just found above statement when reading Prerequisites for migration. It appears that it needs execute permission for running stored procedure to delete DPs, perhaps below are related:
- spDeleteAllMigrationDistributionPoints,
- spDeleteMigrationDistributionPoint,
- spDeleteMigrationDPAndBoundaryGroup.
The log file to troubleshoot migration would be migmctrl.log.
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.
- Edited by Frank DongModerator Thursday, March 8, 2018 6:42 AM
- Marked as answer by DIFFMEISTER Friday, March 9, 2018 1:28 PM
-
-
Hi Frank,
Kind of what I was hoping it wouldn't be doing:), why would it need to delete existing DP's this maybe for DP site reassignment?
Is there a log file of what it's exactly doing, a list of sp's its executing what I don't want it doing is making any deletions from the existing hierarchy or making any changes in the source hierarchy. I know it doesn't, other than the DP reassignment, need to confirm.
Need the source site to be in running condition to mitigate any risks.
Thanks,
Michael
-
migmctrl.log and smsprov.log would show what's happening. I cannot think of any deletions (except the one already mentioned) though.
Torsten Meringer | http://www.mssccmfaq.de
- Marked as answer by DIFFMEISTER Friday, March 9, 2018 1:28 PM
-
-
thanks Torsten,
I need this information for security clearance from the global organization,.. so I need it prior to execution, have sample logs I can refer?
Thanks,
Michael.
Garth Jones
Blog: http://www.enhansoft.com/blog Old Blog: http://smsug.ca/blogs/garth_jones/default.aspx
Twitter: @GarthMJ Book: System Center Configuration Manager Reporting Unleased
- Marked as answer by DIFFMEISTER Friday, March 9, 2018 1:29 PM
-