Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

SQL Server Service of PolicyServer is not running

    • Updated:
    • 22 Apr 2014
    • Product/Version:
    • Endpoint Encryption 3.1 PolicyServer
    • Platform:
    • Windows 2003 Enterprise
Summary
Fix the PolicyServer SQL Server Service that fails to run.
Details
Public
  1. Ensure that the SQL Server Service is running on the server.
    1. Remote Desktop into the SQL Server.
    2. Click Start > Run > Services.msc.
    3. Scroll down to MSSQLServer (or MSSQL$Instance if running in an instance install) and ensure it is started.
    4. Click Start > Run > SvrNetCn.exe.
    5. Ensure that Named Pipes and TCP/IP are in the Enabled Protocol section of the General tab and that the instance selected is the same instance that the Mobile ArmorDB/Log are installed under.
    6. If any changes are made, restart the SQL Service.
  2. Double-click the PolicyServer Health Monitoricon to use the Health Monitor in checking the connectivity.
    Note: Health Monitor should be used with the assistance of Trend Micro Technical Support.
  3. If running as a user, ensure that the PolicyServer Windows Service is running correctly.
    1. Click Run and enter services.msc.
    2. Stop the PolicyServer Windows Service.
      If not using Single Sign-On, proceed to step 7.
    3. Double-click the service.
    4. Click the Log on tab.
    5. Make sure that the This Account radio button is selected.
    6. Ensure that the user running the service has Local Administrative Rights or Log on as a Service Permission.
    7. Retype the password to receive a confirmation that the user is allowed to run the service.
    8. Start the service.
    9. If you are still unable to connect to via MMC, reinstall the PolicyServer Windows Service.
  4. Check if Group Policy is stopping IIS from running properly.
    • Group Policy denied guest logon on the server.
    • The IUSER and IWAM account were members of the guest group.
    • Remove the IUSER and IWAM accounts from that group, and move them into the Users group.
    • Modify the GPO to allow the "Network Service" account to have read permission on \Windows\Temp folder.
    • Below is an example of a Group Policy which works:
      Computer Configuration
      Windows Setting
      Security Setting
      Local Policies
      User Rights Assignment - (The user whose rights are being modified is the same user whom you have set to run the PolicyServer Windows Service).
      Access this computer from the network
      Act as part of the operating system
      Log on Locally
      Bypass traverse checking
      Impersonate a client after authentication
      Lock pages in memory
      Log on as service
      Replace a process level token
      Take ownership of files or other objects
      Computer Configuration
      Windows Setting
      Security Setting
      Local Policies
      Security Options
      Network security: LAN Manager Authentication Level
      Send LM & NTLM responses
      Network security: LDAP client signing requirement level
      Negotiate signing
      Windows Setting
      Security Setting
      System Services
      ASP.NET State Service – Automatic
      Distributed Transaction Coordinator – Automatic
      Event Log – Automatic
      HTTP SSL – Automatic
      IIS Admin Service – Automatic
      SMTPSVC – Automatic
      World Wide Web Publishing Service – Automatic
      PolicyServer Windows Service - Automatic
      MSSQLServer - Automatic
      SQLServerAgent – Automatic
      Windows Setting
      Security Setting
      File System
      %SystemRoot%\Microsoft.NET\Framework\v1.1.4322
      (Service account needs full control)
Premium
Internal
Rating:
Category:
Configure; Troubleshoot; Deploy; Install; Upgrade
Solution Id:
1059712
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.