Re: Encrypted database deployment

Did you run a CREATE MASTER KEY in this database before trying the OPEN
operation? If so, you just opened the new key you created - not the key the
symmetric keys were encrypted with. You may have to go back to your backup
that contains the original key.

--
This posting is provided "AS IS" with no warranties, and confers no rights.
Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm

"Gerhard" <acsla@xxxxxxxxxxxxxxxx> wrote in message
news:54EF76EA-F4ED-44CD-BB7C-3EC017139AAD@xxxxxxxxxxxxxxxx
Thanks. I did still have the password, so ran the below which ran without
error.

However, I still get:

Msg 15466, Level 16, State 1, Line 1
An error occurred during decryption.

when I try to open a symmetric key.

Can you help?

Thanks.

"Roger Wolter[MSFT]" wrote:

This issue is that the password is used to encrypt the database master
key -
it isn't the database master key so you now have two different master
keys
encrypted with the same password which doesn't help you a lot. If you
haven't already blown away the master key, you can re-encrypt it with the
new service master key like this:

OPEN MASTER KEY DECRYPTION BY PASSWORD = 'password'

ALTER MASTER KEY ADD ENCRYPTION BY SERVICE MASTER KEY



--
This posting is provided "AS IS" with no warranties, and confers no
rights.
Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm

"Gerhard" <acsla@xxxxxxxxxxxxxxxx> wrote in message
news:0F2B0D28-2A97-4E60-B6B8-1F821177CA87@xxxxxxxxxxxxxxxx
I have an encrypeted database that I need to move from one development
environment to another. If I back it up and restore it to the new
environment, I get decryption errors, even though the Master Keys have
been
created using the same password CREATE MASTER KEY ENCRYPTION BY
PASSWORD =
...

How can I move the database to the new environment?

Thanks.





.

Relevant Pages

  • Re: SQL Server 2000 / 2005 Encryption
    ... Once it is on the Tablet, does Excel just know to use this certificate because the information in the data dump / pivot table needs to be decrypted? ... This appears to be a "connection only" type of encryption. ... Is this encryption enabled server wide, or for performance reasons, can you enable it only on a single database? ... You can find specifics in BOL under "CREATE MASTER KEY", "CREATE CERTIFICATE" and "CREATE SYMMETRIC KEY". ...
    (microsoft.public.sqlserver.security)
  • RE: 2005-Problem restoring database with encrypted columns to diff ser
    ... Where this did not work is when i created the intial database using SQL ... database located on a SQL Server Standard edition on a Windows 2003 Server. ... ALTER MASTER KEY ADD ENCRYPTION BY SERVICE MASTER KEY; ... > encryption by certificate test; ...
    (microsoft.public.sqlserver.security)
  • 2005-Problem restoring database with encrypted columns to diff ser
    ... I need to start encrypting several fields in a database and have been doing ... OPEN MASTER KEY DECRYPTION BY PASSWORD = 'testAppleA3'; ... ALTER MASTER KEY ADD ENCRYPTION BY SERVICE MASTER KEY; ... encryption by certificate test; ...
    (microsoft.public.sqlserver.security)
  • RE: 2005-Problem restoring database with encrypted columns to diff ser
    ... On a SQL Express instance, create a database/table, Master key, ... Certificate, symmetric key and insert the record with encrypted column. ... Backup/restore to the SQL Enterprise edition instance. ... >Where this did not work is when i created the intial database using SQL ...
    (microsoft.public.sqlserver.security)
  • Re: Restoring Databases with Encrypted Data to Another Server
    ... SQL Server 2005 database. ... -- Create a Database Master Key ... ENCRYPTION BY CERTIFICATE TestCertificate; ... I backup the database and restore to another server. ...
    (microsoft.public.sqlserver.security)