SQL Clone with an Azure AD client

Hello together

We are having a challenge with installing SQL Clone, since moving with our client end devices (notebooks/desktops) to Azure AD .

Previous setup which worked:
- Service Account for SQL Clone in Active Directory
- Client with a normal domain join (AD)
- Authorization of this service account to a fileshare within the domain (on a fileserver)
- Service account in the administrators group of the client end device on which SQL Clone is installed

==> Installation works as desired.


New setup which does not work:
- Service account for SQL Clone in Active Directory and synchronized with Azure Active Directory incl. password hash
- Client only in Azure AD (no hybrid join)
- Permission of this service account to a fileshare within the domain (on a fileserver)
- Service account from Azure AD in the administrators group of the client on which SQL Clone is installed. This with the powershell command "Add-LocalGroupMember -Group Administrators -Member "AzureAD\ServiceAccount@domain.com".

When installing SQL Clone and entering the service user, we get the error message that we do not have access. 

Any idea what we need to consider here?

Thanks in advance.

Best regards
Bjoern




Tagged:

Answers

  • Eddie DEddie D Posts: 1,805 Rose Gold 5
    Hi, Thank you your forum post.

    Does the account you are specifying for the SQL Clone Agent service, have the following permissions:
    • Local admin privileges on the machine in order to use the Virtual Disk Service.
    • Read/write and change permissions access to network locations where images will be stored.
    • Log on as service permission.
    • For creating clones membership in the sysadmin fixed server role on the SQL Instance.
    As for Azure AD, I do not believe that SQL Clone has been tested for Azure AD.  Are you able to return back to using Windows AD for the SQL Clone Agent user accounts?

    Many Thanks
    Eddie
    Eddie Davis
    Senior Product Support Engineer
    Redgate Software Ltd
    Email: support@red-gate.com
Sign In or Register to comment.