How to Turn Off Logging of Software Usage Metrics and ESENT Errors in SQL Server

-setupsql serversql-server-2017

I am running SQL Server 2017 Standard CU 5 in a failover cluster with two nodes (single instance cluster). I have followed these two manuals to deactivate CEIP aka spyware features:

The CEIP service is disabled and stopped,
the CEIP role removed from the cluster
and all registry entries regarding CustomerFeedback and EnableErrorReporting are set to 0.

However I still get the message "Software Usage Metrics is enabled." in SQL Server error logs after a service restart. Additionally there are frequent errors from ESENT like the following in my windows event log:

There is a MS Knowledge Base article for this problem. However it is for SQL Server 2012. It says that this error is related to the "Software Usage Metrics feature". I already followed the advice to grant permissions for the SQL Server service account. However the error message keeps appearing and I don't want Microsoft to collect data anyway.

Here are my questions:

Is that the same feature as the CEIP stuff or something else?
How do I deactivate Software Usage Metrics correctly?

Best Answer

I'll point out that disabling SQLCEIP's service is not a supported configuration, so while you can disable sending information to Microsoft in the paid versions of SQL Server 2016+, the proper mechanism for doing this is documented here:

https://docs.microsoft.com/en-us/sql/sql-server/customer-experience-improvement-program-for-sql-server-data-tools?view=sql-server-2017

(This would leave the SQLCEIP service running and not emitting information to Microsoft). Microsoft recommends you follow documented procedures to make sure that when you are engaged with customer support on an issue they can help fix that issue quickly.

As to your specific question about what this "extra" session is, that feature is not something that is emitting information out to Microsoft. It is a feature that enables a tool that customers can use to determine how many copies of SQL they have running in their organization. The data emitted from SQL goes into a file on the local Windows machine. You can use the tool yourself to see what it does - it is called the Microsoft Assessment and Planning Toolkit, and you can download it here:

https://www.microsoft.com/en-us/download/details.aspx?id=7826

As for whether SQLCEIP is "spyware", I'll try to make sure that you have full information about what kinds of information is collected/not collected through the SQLCEIP mechanism. Microsoft does not try to capture keystrokes, customer data, or otherwise use information we collect to market to customers at all (as you might find in a traditional definition of spyware such as https://simple.wikipedia.org/wiki/Spyware ). The information collected through SQLCEIP is used to make sure that features are working well for customers both during the development cycle of a new version of SQL/new features and to make sure that we understand how our customers use the product so we can make it better. We don't collect information to personally identify anyone and we don't want to know who you are or what you do individually. We are interested in "how many people use Columnstore indexes?" and "how many rowgroups inside of a Columnstore index are optimally packed so that the customer is likely to get a good performance experience?". The information collected help us make sure that our engineering teams have done a complete job at making each feature work for customers.

You can audit all the information collected by SQLCEIP to see this for yourself. The instructions are here:

https://docs.microsoft.com/en-us/sql/database-engine/install-windows/local-audit-for-sql-server-usage-feedback-collection?view=sql-server-2017

Furthermore, we document our privacy policies about what kinds of information we collect/do not collect. Microsoft recently re-vamped all parts of the company to use a single privacy statement, but SQL has a supplement which is aligned closely with its former separate privacy statement since we wanted it to be easy to read/understand and not get lost in the data collection policies for the other consumer services Microsoft provides.

Here's the top-level Microsoft privacy statement:

https://privacy.microsoft.com/en-US/privacystatement

Here's the privacy supplement for SQL Server:

https://docs.microsoft.com/en-us/sql/sql-server/sql-server-privacy?view=sql-server-2017

I hope that this answers your questions as to what the software usage metrics mechanism is and why it is not sending information to Microsoft/related to SQLCEIP.

Related Solutions

Sql-server – SQL Server cluster not available after failure of the “main” server

Without looking at the cluster logs or any other form of error reporting, all I can do is guess here.

But my initial thoughts are that you may have hit the failover threshold. By default, this is going to be set to a maximum of n - 1 failures (where n is the number of nodes) over a period of 6 hours. Yes, that's a long time, and especially in a 2-node cluster that isn't very many failures (only equates to one failure). This threshold is set to prevent the Ping-Pong effect of cluster groups.

In production, this is probably a good thing. But in testing/development/non-prod it is pretty common to run into this initially perplexing problem, as you may be trying to consecutively failover. It is worth noting that these parameters are 100% configurable. All you need to do is go into the properties of the cluster group, and in the "failover" tab you will have the option to change these two parameters (Maximum failures in the specified period and Period (hours). Here is what this looks like in the Failover Cluster Manager:

enter image description here

Note: in my screenshot, the threshold is set to 2 because I have a 3-node cluster.

Likewise, this can be seen with PowerShell (accessing the FailoverClusters module).

# you may need to set your cluster group name to whatever it is named
# in your environment
#
Get-ClusterGroup -Name "SQL Server (MSSQLSERVER)" | 
    Select-Object Name, FailoverThreshold, FailoverPeriod

Sql-server – Complete Failover Cluster Failure SQL Server 2012

If you evict nodes you'll end up formatting the nodes and rebuilding them. Once a node has been evicted from the cluster you won't be able to uninstall the SQL Server instance from the node. You can try manually removing all the registry keys and files, but honestly it's probably faster to reinstall Windows and try getting it back into the cluster.

Has Microsoft not been able to get you towards any resolution on this?

Either way you're looking at a cluster rebuild basically from scratch here with 21 SQL installs, which I'm sure as you know takes forever. There are some ways to make this take less take (building a new two node cluster, installing everything there, then doing a controlled migration between clusters, use DNS to redirect connections to the new names so applications don't need to change, etc.

If this was my environment I'd burn it down and bring it back fresh, obviously with as little downtime as possible.

--sales pitch-- It might be a good idea to bring someone in that has a lot of clustering experience (me, someone else, either way) to help with the rebuild to make sure that everything is setup exactly as it should be and to help take the pressure off your internal team (who probably hasn't been getting a lot of sleep the last two weeks). If you've got a lot of clustering experience in house then this isn't needed of course. I'm just worried because something went horribly wrong doing something which souldn't have been that big of a deal to do. --end sales pitch--

Disclaimer: I'm a consultant.

Best Answer

Related Solutions

Sql-server – SQL Server cluster not available after failure of the “main” server

Sql-server – Complete Failover Cluster Failure SQL Server 2012

Related Question