Certain functionality performed by the SQL Server Service Account post install seems to require a minimum of List Folder access to the root drive of the data folders used by SQL Server. This includes using SSMS to restore a database using a file (the GUI cannot display the path to traverse to the backup file) in versions prior to SQL Server 2012; and in SQL Server 2012 prevents a successful application of SP1 using either the UpdateSource during initial install or running the SP manually after install. In many organizations, the default Everyone and Users groups are removed from the base permissions to conform to the principal of least privileges. And in that same vein, we are using either a Domain User account or the virtual account for the service accounts - which are not in Administrators. I believe that the installation should grant the minimal List Folder access to the root drive only (not inherited or propated) to the Service SID to ensure successful execution of the tasks performed by this account. It is especially egregious that the SP installation fails due to this configuration. This may be the same problem reported in Bug 775401; however, I did not see a root cause determined there.
Product Language
Version
Category
Operating System
Operating System Language
Steps to Reproduce
Actual Results
Expected Results
Platform
Virtualization