{"id":14214,"date":"2020-07-27T13:26:27","date_gmt":"2020-07-27T11:26:27","guid":{"rendered":"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/"},"modified":"2025-10-01T11:45:57","modified_gmt":"2025-10-01T09:45:57","slug":"availability-group-endpoint-ownership","status":"publish","type":"post","link":"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/","title":{"rendered":"SQL Server: Change Availability Group Endpoint Ownership"},"content":{"rendered":"<p>I&#8217;m doing some cleaning on my customer&#8217;s instances.<br \/>\nI want to delete the login of a previous DBA for 2 reasons; this person does not work anymore in my customer&#8217;s company and all DBA are members of a group that is given permission on the instances. I don&#8217;t want to see any DBA&#8217;s personal login on SQL Server instances.<br \/>\nWhen I try to delete the login I receive the following error;<br \/>\n<a href=\"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/Drop_Login_error-4.png\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-42099 aligncenter\" src=\"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/Drop_Login_error-4.png\" alt=\"\" width=\"512\" height=\"169\" \/><\/a><\/p>\n<div>\n<div id=\"highlighter_843135\" class=\"syntaxhighlighter  sql\">\n<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\n<tbody>\n<tr>\n<td class=\"gutter\">\n<div class=\"line number1 index0 alt2\">1<\/div>\n<div class=\"line number2 index1 alt1\">2<\/div>\n<div class=\"line number3 index2 alt2\">3<\/div>\n<\/td>\n<td class=\"code\">\n<div class=\"container\">\n<div class=\"line number1 index0 alt2\"><code class=\"sql plain\">Msg 15173, <\/code><code class=\"sql keyword\">Level<\/code> <code class=\"sql plain\">16, State 1, Line 4<\/code><\/div>\n<div class=\"line number2 index1 alt1\"><code class=\"sql plain\">Server principal <\/code><code class=\"sql string\">'MyDomain\\AccountName'<\/code> <code class=\"sql plain\">has granted one <\/code><code class=\"sql color1\">or<\/code> <code class=\"sql plain\">more permission(s). <\/code><\/div>\n<div class=\"line number3 index2 alt2\"><code class=\"sql keyword\">Revoke<\/code> <code class=\"sql plain\">the permission(s) before dropping the server principal.<\/code><\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<\/div>\n<p>There are no permissions set at the instance level or at the database level for this login.<br \/>\nI get this error because the login is the owner of the Database Mirroring Endpoint.<\/p>\n<p>Every object on SQL Server has an owner. The endpoint got the ownership back when the AlwaysOn Availability group was created by the DBA.<br \/>\nThe following query will show the owner of the Database Mirroring endpoint. Running this query on dozens of instances shows several personal DBA accounts as the owner of the Database Mirroring endpoint.<\/p>\n<div>\n<div id=\"highlighter_587352\" class=\"syntaxhighlighter  sql\">\n<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\n<tbody>\n<tr>\n<td class=\"gutter\">\n<div class=\"line number1 index0 alt2\">1<\/div>\n<div class=\"line number2 index1 alt1\">2<\/div>\n<div class=\"line number3 index2 alt2\">3<\/div>\n<\/td>\n<td class=\"code\">\n<div class=\"container\">\n<div class=\"line number1 index0 alt2\"><code class=\"sql keyword\">select<\/code> <code class=\"sql keyword\">name<\/code><code class=\"sql plain\">, SUSER_NAME(principal_id) <\/code><code class=\"sql keyword\">AS<\/code> <code class=\"sql plain\">OwnerName, type_desc<\/code><\/div>\n<div class=\"line number2 index1 alt1\"><code class=\"sql keyword\">from<\/code> <code class=\"sql plain\">sys.endpoints<\/code><\/div>\n<div class=\"line number3 index2 alt2\"><code class=\"sql keyword\">where<\/code> <code class=\"sql keyword\">name<\/code> <code class=\"sql plain\">= <\/code><code class=\"sql string\">'Hadr_endpoint'<\/code><\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<\/div>\n<p><a href=\"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/Endpoint_owner.png\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-42100 size-full aligncenter\" src=\"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/Endpoint_owner.png\" alt=\"\" width=\"422\" height=\"60\" \/><\/a><\/p>\n<p>As described in the <a href=\"https:\/\/docs.microsoft.com\/en-us\/sql\/relational-databases\/system-catalog-views\/sys-endpoints-transact-sql\">documentation<\/a> the principal_id here is the &#8220;ID of the server principal that created and owns this endpoint&#8221;.<br \/>\nThe Endpoint owner can be changed using the <a href=\"https:\/\/docs.microsoft.com\/en-us\/sql\/t-sql\/statements\/alter-authorization-transact-sql\">ALTER AUTHORIZATION<\/a> command like this;<\/p>\n<div>\n<div id=\"highlighter_503900\" class=\"syntaxhighlighter  sql\">\n<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\n<tbody>\n<tr>\n<td class=\"gutter\">\n<div class=\"line number1 index0 alt2\">1<\/div>\n<\/td>\n<td class=\"code\">\n<div class=\"container\">\n<div class=\"line number1 index0 alt2\"><code class=\"sql keyword\">ALTER<\/code> <code class=\"sql keyword\">AUTHORIZATION<\/code> <code class=\"sql keyword\">ON<\/code> <code class=\"sql plain\">ENDPOINT::Hadr_endpoint <\/code><code class=\"sql keyword\">TO<\/code> <code class=\"sql plain\">sa;<\/code><\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<\/div>\n<p>Before doing so, as mentioned in the error message, we need to careful about the permissions granted by the account we want to remove.<br \/>\nThe endpoint owner granted the CONNECT permission on the endpoint to the SQL Server service account.<br \/>\nDoing ALTER AUTHORIZATION will drop this permission which will disconnect your AlwaysOn replicas.<\/p>\n<p>We can verify the CONNECT permission using the following query.<\/p>\n<div>\n<div id=\"highlighter_726771\" class=\"syntaxhighlighter  sql\">\n<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\n<tbody>\n<tr>\n<td class=\"gutter\">\n<div class=\"line number1 index0 alt2\">1<\/div>\n<div class=\"line number2 index1 alt1\">2<\/div>\n<div class=\"line number3 index2 alt2\">3<\/div>\n<div class=\"line number4 index3 alt1\">4<\/div>\n<div class=\"line number5 index4 alt2\">5<\/div>\n<div class=\"line number6 index5 alt1\">6<\/div>\n<div class=\"line number7 index6 alt2\">7<\/div>\n<\/td>\n<td class=\"code\">\n<div class=\"container\">\n<div class=\"line number1 index0 alt2\"><code class=\"sql keyword\">select<\/code> <code class=\"sql plain\">e.<\/code><code class=\"sql keyword\">name<\/code><\/div>\n<div class=\"line number2 index1 alt1\"><code class=\"sql spaces\">\u00a0\u00a0\u00a0\u00a0<\/code><code class=\"sql plain\">, p.state_desc, SUSER_NAME(p.grantor_principal_id) <\/code><code class=\"sql keyword\">AS<\/code> <code class=\"sql plain\">Grantor<\/code><\/div>\n<div class=\"line number3 index2 alt2\"><code class=\"sql spaces\">\u00a0\u00a0\u00a0\u00a0<\/code><code class=\"sql plain\">, p.permission_name, SUSER_NAME(p.grantee_principal_id) <\/code><code class=\"sql keyword\">AS<\/code> <code class=\"sql plain\">Grantee<\/code><\/div>\n<div class=\"line number4 index3 alt1\"><code class=\"sql keyword\">from<\/code> <code class=\"sql plain\">sys.endpoints <\/code><code class=\"sql keyword\">AS<\/code> <code class=\"sql plain\">e<\/code><\/div>\n<div class=\"line number5 index4 alt2\"><code class=\"sql spaces\">\u00a0\u00a0\u00a0\u00a0<\/code><code class=\"sql color1\">join<\/code> <code class=\"sql plain\">sys.server_permissions <\/code><code class=\"sql keyword\">AS<\/code> <code class=\"sql plain\">p<\/code><\/div>\n<div class=\"line number6 index5 alt1\"><code class=\"sql spaces\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/code><code class=\"sql keyword\">on<\/code> <code class=\"sql plain\">e.endpoint_id = p.major_id<\/code><\/div>\n<div class=\"line number7 index6 alt2\"><code class=\"sql keyword\">where<\/code> <code class=\"sql keyword\">name<\/code> <code class=\"sql plain\">= <\/code><code class=\"sql string\">'Hadr_endpoint'<\/code><\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<\/div>\n<p><a href=\"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/CONNECT_Grantee.png\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-42103 size-full aligncenter\" src=\"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/CONNECT_Grantee.png\" alt=\"\" width=\"618\" height=\"54\" \/><\/a><\/p>\n<p>The DBA login is indeed the grantor of the CONNECT permission to the endpoint for the service account.<br \/>\nAfter running the ALTER AUTHORIZATION command we need to grand again the permission.<\/p>\n<p>Here are the commands to change the ownership on the AlwaysOn endpoint and grant CONNECT back to the service account:<\/p>\n<div>\n<div id=\"highlighter_517575\" class=\"syntaxhighlighter  sql\">\n<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\n<tbody>\n<tr>\n<td class=\"gutter\">\n<div class=\"line number1 index0 alt2\">1<\/div>\n<div class=\"line number2 index1 alt1\">2<\/div>\n<\/td>\n<td class=\"code\">\n<div class=\"container\">\n<div class=\"line number1 index0 alt2\"><code class=\"sql keyword\">ALTER<\/code> <code class=\"sql keyword\">AUTHORIZATION<\/code> <code class=\"sql keyword\">ON<\/code> <code class=\"sql plain\">ENDPOINT::Hadr_endpoint <\/code><code class=\"sql keyword\">TO<\/code> <code class=\"sql plain\">sa<\/code><\/div>\n<div class=\"line number2 index1 alt1\"><code class=\"sql keyword\">GRANT<\/code> <code class=\"sql keyword\">CONNECT<\/code> <code class=\"sql keyword\">ON<\/code> <code class=\"sql plain\">ENDPOINT::Hadr_endpoint <\/code><code class=\"sql keyword\">TO<\/code> <code class=\"sql plain\">[MyDomain\\svc_sql]<\/code><\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<\/div>\n<p>Now, running the 2 previous queries gives the following result.<a href=\"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/final_query.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-42104 size-full\" src=\"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/final_query.png\" alt=\"\" width=\"420\" height=\"104\" \/><\/a><\/p>\n<p>I can now delete the DBA login from the instance.<br \/>\nIn my opinion, changing the AlwaysOn endpoint owner to the &#8220;sa&#8221; login could be a best practice to apply after setting up a new Availability group.<\/p>\n<p>PS: An other error linked to AlwaysOn that you can face when dropping a login is the following.<\/p>\n<div>\n<div id=\"highlighter_865760\" class=\"syntaxhighlighter  sql\">\n<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\n<tbody>\n<tr>\n<td class=\"gutter\">\n<div class=\"line number1 index0 alt2\">1<\/div>\n<\/td>\n<td class=\"code\">\n<div class=\"container\">\n<div class=\"line number1 index0 alt2\"><code class=\"sql plain\">The server principal owns one <\/code><code class=\"sql color1\">or<\/code> <code class=\"sql plain\">more availability <\/code><code class=\"sql keyword\">group<\/code><code class=\"sql plain\">(s) <\/code><code class=\"sql color1\">and<\/code> <code class=\"sql plain\">cannot be dropped.<\/code><\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<\/div>\n<p>This one is about the owner of the availability group which can be identified and modified with the following queries.<\/p>\n<div>\n<div id=\"highlighter_324133\" class=\"syntaxhighlighter  sql\">\n<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\n<tbody>\n<tr>\n<td class=\"gutter\">\n<div class=\"line number1 index0 alt2\">1<\/div>\n<div class=\"line number2 index1 alt1\">2<\/div>\n<div class=\"line number3 index2 alt2\">3<\/div>\n<div class=\"line number4 index3 alt1\">4<\/div>\n<div class=\"line number5 index4 alt2\">5<\/div>\n<div class=\"line number6 index5 alt1\">6<\/div>\n<\/td>\n<td class=\"code\">\n<div class=\"container\">\n<div class=\"line number1 index0 alt2\"><code class=\"sql keyword\">select<\/code> <code class=\"sql plain\">g.<\/code><code class=\"sql keyword\">name<\/code> <code class=\"sql keyword\">AS<\/code> <code class=\"sql plain\">GroupName, p.<\/code><code class=\"sql keyword\">name<\/code> <code class=\"sql keyword\">AS<\/code> <code class=\"sql plain\">OwnerName<\/code><\/div>\n<div class=\"line number2 index1 alt1\"><code class=\"sql keyword\">from<\/code> <code class=\"sql plain\">sys.availability_groups <\/code><code class=\"sql keyword\">as<\/code> <code class=\"sql plain\">g<\/code><\/div>\n<div class=\"line number3 index2 alt2\"><code class=\"sql spaces\">\u00a0\u00a0\u00a0\u00a0<\/code><code class=\"sql color1\">join<\/code> <code class=\"sql plain\">sys.availability_replicas <\/code><code class=\"sql keyword\">AS<\/code> <code class=\"sql plain\">r<\/code><\/div>\n<div class=\"line number4 index3 alt1\"><code class=\"sql spaces\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/code><code class=\"sql keyword\">on<\/code> <code class=\"sql plain\">g.group_id = r.group_id<\/code><\/div>\n<div class=\"line number5 index4 alt2\"><code class=\"sql spaces\">\u00a0\u00a0\u00a0\u00a0<\/code><code class=\"sql color1\">join<\/code> <code class=\"sql plain\">sys.server_principals <\/code><code class=\"sql keyword\">AS<\/code> <code class=\"sql plain\">p<\/code><\/div>\n<div class=\"line number6 index5 alt1\"><code class=\"sql spaces\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/code><code class=\"sql keyword\">on<\/code> <code class=\"sql plain\">r.owner_sid = p.sid<\/code><\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<\/div>\n<div>\n<div id=\"highlighter_321333\" class=\"syntaxhighlighter  sql\">\n<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\n<tbody>\n<tr>\n<td class=\"gutter\">\n<div class=\"line number1 index0 alt2\">1<\/div>\n<\/td>\n<td class=\"code\">\n<div class=\"container\">\n<div class=\"line number1 index0 alt2\"><code class=\"sql keyword\">ALTER<\/code> <code class=\"sql keyword\">AUTHORIZATION<\/code> <code class=\"sql keyword\">ON<\/code> <code class=\"sql plain\">AVAILABILITY <\/code><code class=\"sql keyword\">GROUP<\/code><code class=\"sql plain\">::[MyAGName] <\/code><code class=\"sql keyword\">TO<\/code> <code class=\"sql plain\">sa;<\/code><\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<\/div>\n<p>Written by <a href=\"https:\/\/www.linkedin.com\/in\/steven-naudet-aa540158\/\">Steven Naudet<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>I&#8217;m doing some cleaning on my customer&#8217;s instances. I want to delete the login of a previous DBA for 2 reasons; this person does not work anymore in my customer&#8217;s company and all DBA are members of a group that is given permission on the instances. I don&#8217;t want to see any DBA&#8217;s personal login [&hellip;]<\/p>\n","protected":false},"author":26,"featured_media":14219,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[229,99],"tags":[1781,1972,1973,2550],"type_dbi":[],"class_list":["post-14214","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-database-administration-monitoring","category-sql-server","tag-availability-group","tag-endpoint","tag-permission","tag-sql-server-2"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.2 (Yoast SEO v27.2) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>SQL Server: Change Availability Group Endpoint Ownership - dbi Blog<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"SQL Server: Change Availability Group Endpoint Ownership\" \/>\n<meta property=\"og:description\" content=\"I&#8217;m doing some cleaning on my customer&#8217;s instances. I want to delete the login of a previous DBA for 2 reasons; this person does not work anymore in my customer&#8217;s company and all DBA are members of a group that is given permission on the instances. I don&#8217;t want to see any DBA&#8217;s personal login [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/\" \/>\n<meta property=\"og:site_name\" content=\"dbi Blog\" \/>\n<meta property=\"article:published_time\" content=\"2020-07-27T11:26:27+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-10-01T09:45:57+00:00\" \/>\n<meta property=\"og:image\" content=\"http:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/4_1.png\" \/>\n\t<meta property=\"og:image:width\" content=\"298\" \/>\n\t<meta property=\"og:image:height\" content=\"139\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Microsoft Team\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Microsoft Team\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/\"},\"author\":{\"name\":\"Microsoft Team\",\"@id\":\"https:\/\/www.dbi-services.com\/blog\/#\/schema\/person\/bfab48333280d616e1170e7369df90a4\"},\"headline\":\"SQL Server: Change Availability Group Endpoint Ownership\",\"datePublished\":\"2020-07-27T11:26:27+00:00\",\"dateModified\":\"2025-10-01T09:45:57+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/\"},\"wordCount\":406,\"commentCount\":0,\"image\":{\"@id\":\"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/4_1.png\",\"keywords\":[\"Availability group\",\"endpoint\",\"permission\",\"SQL Server\"],\"articleSection\":[\"Database Administration &amp; Monitoring\",\"SQL Server\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/\",\"url\":\"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/\",\"name\":\"SQL Server: Change Availability Group Endpoint Ownership - dbi Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.dbi-services.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/4_1.png\",\"datePublished\":\"2020-07-27T11:26:27+00:00\",\"dateModified\":\"2025-10-01T09:45:57+00:00\",\"author\":{\"@id\":\"https:\/\/www.dbi-services.com\/blog\/#\/schema\/person\/bfab48333280d616e1170e7369df90a4\"},\"breadcrumb\":{\"@id\":\"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#primaryimage\",\"url\":\"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/4_1.png\",\"contentUrl\":\"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/4_1.png\",\"width\":298,\"height\":139,\"caption\":\"Azure Active Directory\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\/\/www.dbi-services.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"SQL Server: Change Availability Group Endpoint Ownership\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.dbi-services.com\/blog\/#website\",\"url\":\"https:\/\/www.dbi-services.com\/blog\/\",\"name\":\"dbi Blog\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.dbi-services.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.dbi-services.com\/blog\/#\/schema\/person\/bfab48333280d616e1170e7369df90a4\",\"name\":\"Microsoft Team\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/secure.gravatar.com\/avatar\/c44a1a792c059f24055763aa77d80a244467f6eef724a8bd13db8d4a350b7a4c?s=96&d=mm&r=g\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/c44a1a792c059f24055763aa77d80a244467f6eef724a8bd13db8d4a350b7a4c?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/c44a1a792c059f24055763aa77d80a244467f6eef724a8bd13db8d4a350b7a4c?s=96&d=mm&r=g\",\"caption\":\"Microsoft Team\"},\"url\":\"https:\/\/www.dbi-services.com\/blog\/author\/microsoft-team\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"SQL Server: Change Availability Group Endpoint Ownership - dbi Blog","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/","og_locale":"en_US","og_type":"article","og_title":"SQL Server: Change Availability Group Endpoint Ownership","og_description":"I&#8217;m doing some cleaning on my customer&#8217;s instances. I want to delete the login of a previous DBA for 2 reasons; this person does not work anymore in my customer&#8217;s company and all DBA are members of a group that is given permission on the instances. I don&#8217;t want to see any DBA&#8217;s personal login [&hellip;]","og_url":"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/","og_site_name":"dbi Blog","article_published_time":"2020-07-27T11:26:27+00:00","article_modified_time":"2025-10-01T09:45:57+00:00","og_image":[{"width":298,"height":139,"url":"http:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/4_1.png","type":"image\/png"}],"author":"Microsoft Team","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Microsoft Team","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#article","isPartOf":{"@id":"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/"},"author":{"name":"Microsoft Team","@id":"https:\/\/www.dbi-services.com\/blog\/#\/schema\/person\/bfab48333280d616e1170e7369df90a4"},"headline":"SQL Server: Change Availability Group Endpoint Ownership","datePublished":"2020-07-27T11:26:27+00:00","dateModified":"2025-10-01T09:45:57+00:00","mainEntityOfPage":{"@id":"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/"},"wordCount":406,"commentCount":0,"image":{"@id":"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#primaryimage"},"thumbnailUrl":"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/4_1.png","keywords":["Availability group","endpoint","permission","SQL Server"],"articleSection":["Database Administration &amp; Monitoring","SQL Server"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/","url":"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/","name":"SQL Server: Change Availability Group Endpoint Ownership - dbi Blog","isPartOf":{"@id":"https:\/\/www.dbi-services.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#primaryimage"},"image":{"@id":"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#primaryimage"},"thumbnailUrl":"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/4_1.png","datePublished":"2020-07-27T11:26:27+00:00","dateModified":"2025-10-01T09:45:57+00:00","author":{"@id":"https:\/\/www.dbi-services.com\/blog\/#\/schema\/person\/bfab48333280d616e1170e7369df90a4"},"breadcrumb":{"@id":"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#primaryimage","url":"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/4_1.png","contentUrl":"https:\/\/www.dbi-services.com\/blog\/wp-content\/uploads\/sites\/2\/2022\/04\/4_1.png","width":298,"height":139,"caption":"Azure Active Directory"},{"@type":"BreadcrumbList","@id":"https:\/\/www.dbi-services.com\/blog\/availability-group-endpoint-ownership\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/www.dbi-services.com\/blog\/"},{"@type":"ListItem","position":2,"name":"SQL Server: Change Availability Group Endpoint Ownership"}]},{"@type":"WebSite","@id":"https:\/\/www.dbi-services.com\/blog\/#website","url":"https:\/\/www.dbi-services.com\/blog\/","name":"dbi Blog","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.dbi-services.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.dbi-services.com\/blog\/#\/schema\/person\/bfab48333280d616e1170e7369df90a4","name":"Microsoft Team","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/c44a1a792c059f24055763aa77d80a244467f6eef724a8bd13db8d4a350b7a4c?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/c44a1a792c059f24055763aa77d80a244467f6eef724a8bd13db8d4a350b7a4c?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/c44a1a792c059f24055763aa77d80a244467f6eef724a8bd13db8d4a350b7a4c?s=96&d=mm&r=g","caption":"Microsoft Team"},"url":"https:\/\/www.dbi-services.com\/blog\/author\/microsoft-team\/"}]}},"_links":{"self":[{"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/posts\/14214","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/users\/26"}],"replies":[{"embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/comments?post=14214"}],"version-history":[{"count":2,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/posts\/14214\/revisions"}],"predecessor-version":[{"id":40590,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/posts\/14214\/revisions\/40590"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/media\/14219"}],"wp:attachment":[{"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/media?parent=14214"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/categories?post=14214"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/tags?post=14214"},{"taxonomy":"type","embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/type_dbi?post=14214"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}