![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 51%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)
SQL Server Database Engine
Core component of SQL Server for storing, processing, and securing data
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 40%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJP%3C/text%3E%3C/svg%3E)
Hi @Mir Majeed,
Thank you for contacting Microsoft Q&A. You're facing repeated "lease expired" errors in SQL Server Always On AG, where the primary misses its 20-second WSFC renewal—likely from daily Trellix scan spikes (CPU/I/O overload). Here's a cause breakdown and fixes per Microsoft docs.
- Resource Strain: High CPU (>90%), disk latency (>5-10 ms), low memory (paging)—e.g., from scans locking files.
- Comms Issues: RPC/shared memory failures or quorum loss.
- OS Interference: Hangs, VM throttling, or AV scanning cluster paths (e.g., C:\Windows\Cluster).
I have some solutions you can try:
- Share last 2–3 event timestamps (from AG Dashboard/Event Viewer: Microsoft > FailoverClustering > Operational).
- Confirm Trellix scan times + modules.
- Add AV exclusions: Data/log/TempDB, backups, ERRORLOG/.xel/.trc, Full-Text/Filestream/replication, C:\Windows\Cluster, CSV roots. Processes: sqlservr.exe, sqlagent.exe, fdhost.exe, fdlauncher.exe, Launchpad.exe (if ML), SQLBrowser.exe, clussvc.exe.
- Shift full scans to off-peak; enable throttling/scan-on-write for DBs. See Trellix KB: https://kcm.trellix.com/corporate/index?page=content&id=KB67211.
- If events persist pre-fix: Extend lease timeout via Failover Cluster Manager (Roles > AG resource > Properties > LeaseTimeout=60000 ms > Apply > Offline/Online). Or PowerShell:
Get-ClusterResource "[AG_Name]" | Set-ClusterParameter -Name LeaseTimeout -Value 60000. Revert to 20000 after 2 stable scans. Monitor: SSMS > Always On > Right-click AG > Dashboard.
Here are some referencs I find in Microsoft Office:
- AG basics: What is an Always On availability group?
- Lease timeout: Lease timeout
- SQL AV exclusions: Configure antivirus software to work with SQL Server
- Cluster AV: Antivirus software that isn't cluster-aware may cause problems with Cluster Services
I hope this helps you get things back on track quickly! If you agree with our suggestion, feel free to interact with the system accordingly!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 57.00000000000001%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECA%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 10%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAK%3C/text%3E%3C/svg%3E)