I have been running a server with Sophos Enterprise Console for a year or two now. Today I was on the server and the Enterprise Console would not open, so I bebooted the server. After that didn't solve the problem I started hunting and noticed the "Sohpos Management Service" was not started. I started following the insructions here and immediately got stuck on step 1. the SQL Server (SOPHOS) service won't start. All that I have to go by is the System Event log message that says:
The SQL Server (SOPHOS) service terminated with service-specific error 2148081668 (0x80092004).
Source: Service Control Manager
Event ID: 7024
The article linked above doesn't give any instuctions if step 1 fails, so I'm not sure what to do.
These are the error logs that stood out to me in the MSSQL Server Log files:
2011-06-09 13:33:45.14 Server Error: 17190, Severity: 16, State: 1.
2011-06-09 13:33:45.14 Server FallBack certificate initialization failed with error code: 15.
2011-06-09 13:33:45.14 Server Unable to initialize SSL encryption because a valid certificate could not be found, and it is not possible to create a self-signed certificate.
2011-06-09 13:33:45.14 Server Error: 17182, Severity: 16, State: 1.
2011-06-09 13:33:45.14 Server TDSSNIClient initialization failed with error 0x80092004, status code 0x80.
2011-06-09 13:33:45.14 Server Error: 17182, Severity: 16, State: 1.
2011-06-09 13:33:45.14 Server TDSSNIClient initialization failed with error 0x80092004, status code 0x1.
2011-06-09 13:33:45.14 Server Error: 17826, Severity: 18, State: 3.
2011-06-09 13:33:45.14 Server Could not start the network library because of an internal error in the network library. To determine the cause, review the errors immediately preceding this one in the error log.
2011-06-09 13:33:45.14 Server Error: 17120, Severity: 16, State: 1.
2011-06-09 13:33:45.14 Server SQL Server could not spawn FRunCM thread. Check the SQL Server error log and the Windows event logs for information about possible related problems.
and this:
2011-06-09 13:15:40.38 Server The SQL Network Interface library could not deregister the Service Principal Name (SPN) for the SQL Server service. Error: 0x45b, state: 4. Administrator should deregister this SPN manually to avoid client authentication errors.
I have no idea what is going on with this.
Thanks for any help!
Edit: Finally got a reasonble solution. SQL Server (SOPHOS) service was running as NT Authority\Network Service. I added this user to the permissions on the folder:
c:\Documents and Settings\NetworkService\Application Data\Microsoft\Crypto\RSA
After adding those permissions, I put all the service settings back to the way they were originally and everything started working again. I still have no idea what happened, but hopefully this will at least help someone else out.
This thread was automatically locked due to age.
