Table of Contents
SQL Server Error : 10011 Details
SQL Server Error: 10011
Severity: 16
Event Logged or not: No
Description:
Access denied.
Severity 16 Description:
Indicates general errors that can be corrected by the user.
Error: 10011, Access denied when trying to add new server roles to users. I’m using Windows Server 2008 so I run SSMS as an administrator. I’m using Mixed Mode and logging in as “sa” when I get this error. Tried with Windows Integrated as well, even after uninstalling and reinstalling.
Reading sql server error log location from SQL Query
Identifying SQL Server Error Log File used by SQL Server Database Engine can be done by reading SQL Server Error Logs. DBA can execute the XP_READERRORLOG extended stored procedure to read the SQL Server Error Log and search for its location used by the instance of SQL Server.
USE master
Go
xp_readerrorlog 0, 1, N'Logging SQL Server messages in file', NULL, NULL, N'asc'
Go
For other ways to read and find error log location please our artcile https://sqlserver-dba.co.uk/error-log/sql-server-identify-location-of-the-sql-server-error-log-file.html
Solution for Resolving the Error
My response is based on the following article: Transport Layer Security (TLS) best practises with the.NET Framework, which looks to require.NET 4.7 or higher….
My testing was carried out on a 2016 server with.NET 4.7 functioning as both the client and the server and interacting with itself. The client EXE was designed for.NET versions prior to 4.7. If the following values aren’t present in the registry, it appears that they default to 0.
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v2.0.50727]
"SystemDefaultTlsVersions"=dword:00000001
"SchUseStrongCrypto"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v4.0.30319]
"SystemDefaultTlsVersions"=dword:00000001
"SchUseStrongCrypto"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727]
"SystemDefaultTlsVersions"=dword:00000001
"SchUseStrongCrypto"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319]
"SystemDefaultTlsVersions"=dword:00000001
"SchUseStrongCrypto"=dword:00000001
After adding these values I no longer needed to have FIPS enabled for TLS 1.2 to work.
SQL Server Error Code and solution summary
SQL Server Error: 10011
Severity: 16
Event Logged or not: No
Description:
Access denied.