Click here to monitor SSC
SQLServerCentral is supported by Red Gate Software Ltd.
 
Log in  ::  Register  ::  Not logged in
 
 
 
        
Home       Members    Calendar    Who's On


Add to briefcase

Question re: service pack upgrade installation when encryption enabled for dbs Expand / Collapse
Author
Message
Posted Monday, October 22, 2012 2:20 PM
Forum Newbie

Forum NewbieForum NewbieForum NewbieForum NewbieForum NewbieForum NewbieForum NewbieForum Newbie

Group: General Forum Members
Last Login: Wednesday, March 5, 2014 12:38 PM
Points: 4, Visits: 25
Hello. Apologies if this question has been asked before but i am a newbie to the site & forum. I started at a new IT company and during inventory of their db servers i noticed that one of them is behind in its service pack installed. Its version of SQL is: SQL Server 2008 R2 (RTM). And based on some recent stack dumps they've logged & the Non-yielding Resource Monitor errors captured, I know that some of that can be corrected by us just bringing the service pack up to date. At least to Service Pack 1 for 2008 R2 if nothing else. Am i correct on that? Anyway, the actual concern i have is after i test the implementation of Svc Pack1 on one of our test/QA servers, can i expect any complications in upgrading the service pack for this server when all of the dbs on the server are encrypted? Will that jeopardize that encryption configuration or will it be transparent? And in that same vein re: the encrypted databases would we have to re install/restore the certificates created during that encryption after the upgrade? Maybe none of this is a factor but considering i'd be making the svc pack upgrade on a production server i wanted to reach out & ask. Any info anyone might have would be great. Thanks!
Post #1375721
Posted Monday, October 22, 2012 10:28 PM


SSCertifiable

SSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiable

Group: General Forum Members
Last Login: Today @ 6:36 AM
Points: 6,423, Visits: 13,818
You just need to ensure that you have backups of all certificates (public and private keys) and backups of all the databases too. It might also pay to review the release notes for the service pack to get an idea of whats included.

-----------------------------------------------------------------------------------------------------------

"Ya can't make an omelette without breaking just a few eggs"
Post #1375819
Posted Monday, October 22, 2012 10:41 PM


SSCoach

SSCoachSSCoachSSCoachSSCoachSSCoachSSCoachSSCoachSSCoachSSCoachSSCoachSSCoach

Group: General Forum Members
Last Login: Yesterday @ 9:28 PM
Points: 17,729, Visits: 15,597
Perry Whittle (10/22/2012)
You just need to ensure that you have backups of all certificates (public and private keys) and backups of all the databases too. It might also pay to review the release notes for the service pack to get an idea of whats included.


I just want to reiterate what Perry said. Make sure you have backups of those keys and databases. Worst case scenario without those backups is losing all data in the encrypted database.




Jason AKA CirqueDeSQLeil
I have given a name to my pain...
MCM SQL Server


SQL RNNR

Posting Performance Based Questions - Gail Shaw
Posting Data Etiquette - Jeff Moden
Hidden RBAR - Jeff Moden
VLFs and the Tran Log - Kimberly Tripp
Post #1375822
Posted Tuesday, October 23, 2012 1:40 AM


SSCertifiable

SSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiable

Group: General Forum Members
Last Login: Today @ 6:36 AM
Points: 6,423, Visits: 13,818
if you're sensible you already have backups of the above

-----------------------------------------------------------------------------------------------------------

"Ya can't make an omelette without breaking just a few eggs"
Post #1375877
Posted Tuesday, October 23, 2012 7:19 AM
Forum Newbie

Forum NewbieForum NewbieForum NewbieForum NewbieForum NewbieForum NewbieForum NewbieForum Newbie

Group: General Forum Members
Last Login: Wednesday, March 5, 2014 12:38 PM
Points: 4, Visits: 25
Thank you both for the replies. Yes, i've made sure our db backups are being captured daily but will ensure i have a clean set before i start with the upgrade. I know we've saved off backups of the certs & keys in past workplaces & kept them offsite in case of a disaster, so it sounds like i need to make sure that is happening here as well. I'm pretty sure it is but will confirm with the lead DBA here. Thx again for the feedback. That's what i needed to know.
Post #1376025
« Prev Topic | Next Topic »

Add to briefcase

Permissions Expand / Collapse