Path: csiph.com!eternal-september.org!feeder.eternal-september.org!nntp.eternal-september.org!.POSTED!not-for-mail From: Anton Shepelev Newsgroups: comp.databases.ms-sqlserver Subject: Re: Backup to a network share Date: Fri, 23 Jan 2026 18:55:13 +0300 Organization: A noiseless patient Spider Lines: 19 Message-ID: <20260123185513.298e72ae7a415f6c93377ba1@g{oogle}mail.com> References: <20260122172111.aa47435016e93d0e505cb230@g{oogle}mail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Injection-Date: Fri, 23 Jan 2026 15:55:15 +0000 (UTC) Injection-Info: dont-email.me; posting-host="97a2755e91d55dde7e13c81f818de53c"; logging-data="38635"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1+YAf3aS3mrMSpG/qpYzU3lhCCK9xUGv3E=" Cancel-Lock: sha1:kqlZu8TQgp8wsWJKnt5gJ3fCMpw= X-Newsreader: Sylpheed 3.7.0 (GTK+ 2.24.30; i686-pc-mingw32) Xref: csiph.com comp.databases.ms-sqlserver:2277 Erland Sommarskog to Anton Shepelev: > > What are some best (or least tolearable) practices > > of backing up MSSQL to a network share on Windows? > > Run with a gMSA, I guess. That is, rather a machine- > local MSA, an MSA that exists in the AD and therefore > can be granted access to the network share. > > One more alternative to the list above is to grant > access to the machine account, that is > DOMAIN\MACHINE$, but that is less secure. Thanks. We have gone the latter route, as the middle ground between ease and security. -- () ascii ribbon campaign -- against html e-mail /\ www.asciiribbon.org -- against proprietary attachments