I have an instance of SCCM 2007(two servers) using SQL Server 2008, each is running on Server 2008. When the systems are initially installed, everything works great, but after a day or so both SCCM servers will lose connectivity totheir databases, and the SQL Server will start filling the Application Log with "Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'. Reason: Token-based server access validation failed with an infrastructure error. Check for previous errors. [CLIENT: xxx.xxx.xxx.xxx]" where xxx is the ip address of one the SCCM servers.

The only mention of this error I could find everywhere indicated an SPN problem in SQL Server clusters, but I am not clustering the SQL Server and I have verified that the SPN is correct for the service account that SQL Server is running under.

I'm pulling my hair out over this; I would be much obligedifanyone could point me in the right direction.

Thanks is advance,

Lacie

If you’re getting a login failed for your Windows user - which you’re sure you put in the sysadmins role - it’s probably because UAC isn’t pasing all your group memberships to SSMS when you run it, and therefore giving you access denied. If you check your SQL errorlog and you see something like this:

Login failed for user Username Reason: Token-based server access validation failed with an infrastructure error. Check for previous errors.

It’s probably UAC. Try right clicking and running as administrator and seeing if it goes away. Of course if you added your user explicitly you’re probably fine, but just to get a cluster up and running I added my domain admins user to the DB - and of course that’s a membership that UAC will mask.

Resolution:
i) Turn off UAC
or
ii) Right click and launch as "Run As Adminstrator"

Thanks
Sreekar