May 26, 2015 at 1:30 pm
HI Experts,
I wrote an automated script to implement TDE, but I found that after any db is encrypted, the "is_master_key_encrypted" column shows 0.
Can you suggest reviewing my script what are the probable issues which I need to rectify here?
Thanks.
May 27, 2015 at 8:16 am
Any update by anyone please?
Thanks.
May 27, 2015 at 10:20 am
SQL-DBA-01 (5/26/2015)
HI Experts,I wrote an automated script to implement TDE, but I found that after any db is encrypted, the "is_master_key_encrypted" column shows 0.
Can you suggest reviewing my script what are the probable issues which I need to rectify here?
I'm assuming you're referring to the column [is_master_key_encrypted_by_server] in the sys.databases catalog?
Since your database master key is created in the master database it will only ever be this key you'll see with the column status of 1 regardless of how many databases you encrypt.
-----------------------------------------------------------------------------------------------------------
"Ya can't make an omelette without breaking just a few eggs" 😉
May 27, 2015 at 10:41 am
Thnx Perry.
So is my automated script wrong (attached one in previous mail) per the process of enabling aTDE??
Do I need to do any changes to it? Plz suggest.
Thanks.
May 28, 2015 at 4:40 am
SQL-DBA-01 (5/27/2015)
Thnx Perry.So is my automated script wrong (attached one in previous mail) per the process of enabling aTDE??
Do I need to do any changes to it? Plz suggest.
I don't know, what I do know is that the column [is_master_key_encrypted_by_server] in the sys.databases catalog will only show a status if you have created a database master key within that database.
Since TDE uses a server level DMK and cert you wont see a status in the column above for your TDE enabled user database?
-----------------------------------------------------------------------------------------------------------
"Ya can't make an omelette without breaking just a few eggs" 😉
Viewing 5 posts - 1 through 5 (of 5 total)
You must be logged in to reply to this topic. Login to reply