Access denied for enabled xp_cmdshell for the admin user

sql-server windows sql-server-2008 permissions xp-cmdshell
Joshua H. picture Joshua H. · May 30, 2012 · Viewed 43.4k times · Source

I'm using xp_cmdshell within a database trigger to launch a exe file.

xp_cmdshell is enabled(it can execute simple cmd command like 'echo'). But when I try to launch the exe through xp_cmdshell, the access is denied.

I am the database administrator. And I can launch the exe through cmd directly. Anyone know why I get denied and how to fix it?

Answer

Peter Wishart picture Peter Wishart · May 30, 2012

Use xp_cmdshell to run "whoami", then check effective permissions for the stated user on the exe and any resources it accesses. Odds are that an account like localsystem is being used to run processes via xp_cmdshell.

EXEC xp_cmdshell 'whoami'

Related questions

Can't connect to SQL 2012 remotely by IP and named instance

First off, I already know that Windows Firewall is blocking my connection -- I just don't know what to do about it. When I turn WF all the way off, my remote connection works. I already have a Rule to …

Read More
exception has been thrown by a target of invocation in Visual Studio 2013

Today when I opened Visual Studio 2013 Professional Edition, I got the error exception has been thrown by a target of invocation. Also I tried to open ILSpy to debug a dll, but it crashed. I think that it might be …

Read More
Upgrading from SQL Server 2008 R2 Express to SQL Server 2008 R2 Enterprise

When I tried upgrading from SQL Server 2008 R2 Express to SQL Server 2008 R2 Enterprise, it passed all tests and then it failed at step "Select features", saying the following error: There are no features selected for upgrade. And a window …

Read More