Login failed for user ‘DOMAIN\MACHINENAME$’

by

NETWORK SERVICE and LocalSystem will authenticate themselves always as the correpsonding account locally (builtin\network service and builtin\system) but both will authenticate as the machine account remotely.

If you see a failure like Login failed for user 'DOMAIN\MACHINENAME$' it means that a process running as NETWORK SERVICE or as LocalSystem has accessed a remote resource, has authenticated itself as the machine account and was denied authorization.

Typical example would be an ASP application running in an app pool set to use NETWORK SERVICE credential and connecting to a remote SQL Server: the app pool will authenticate as the machine running the app pool, and is this machine account that needs to be granted access.

When access is denied to a machine account, then access must be granted to the machine account. If the server refuses to login ‘DOMAIN\MACHINE$’, then you must grant login rights to ‘DOMAIN\MACHINE$’ not to NETWORK SERVICE. Granting access to NETWORK SERVICE would allow a local process running as NETWORK SERVICE to connect, not a remote one, since the remote one will authenticate as, you guessed, DOMAIN\MACHINE$.

If you expect the asp application to connect to the remote SQL Server as a SQL login and you get exceptions about DOMAIN\MACHINE$ it means you use Integrated Security in the connection string. If this is unexpected, it means you screwed up the connection strings you use.

More Related Contents:

  1. How can I solve a connection pool problem between ASP.NET and SQL Server?
  2. How do you effectively model inheritance in a database?
  3. How does SQLParameter prevent SQL Injection?
  4. Like Operator in Entity Framework?
  5. Why did a network-related or instance-specific error occur while establishing a connection to SQL Server?
  6. SQL Identity (autonumber) is Incremented Even with a Transaction Rollback
  7. What is the correct SQL type to store a .Net Timespan with values > 24:00:00?
  8. .NET Entity Framework and transactions
  9. How to find foreign key dependencies in SQL Server?
  10. Update primary key value using entity framework
  11. A connection was successfully established with the server, but then an error occurred during the pre-login handshake
  12. What’s a good way to trim all whitespace characters from a string in T-SQL without UDF and without CLR?
  13. SqlDateTime.MinValue != DateTime.MinValue, why?
  14. Using “GO” within a transaction
  15. MultipleActiveResultSets=True or multiple connections?
  16. How to solve “unable to switch the encoding” error when inserting XML into SQL Server
  17. CLR Strict Security on SQL Server 2017
  18. How to build RUNAS /NETONLY functionality into a (C#/.NET/WinForms) program?
  19. Does this code prevent SQL injection?
  20. TSQL md5 hash different to C# .NET md5
  21. How do I write LINQ’s .Skip(1000).Take(100) in pure SQL?
  22. Received an invalid column length from the bcp client for colid 6
  23. How to I serialize a large graph of .NET object into a SQL Server BLOB without creating a large buffer?
  24. Encrypting appSettings in web.config
  25. Unable to load DLL ‘SqlServerSpatial.dll’
  26. IIS: web applications warmup
  27. .NET, the SqlConnection object, and multi-threading
  28. Implementing transactions over multiple databases
  29. ASP.NET MVC on IIS6
  30. How to serialize a large graph of .NET objects into a SQL Server BLOB without creating a large buffer?

Leave a Comment