April 26, 2020 at 10:15 pm
In order to restore an encrypted database on another instance, do I need the entire chain on the new instance, ie: Service Master Key, Database Master, and the DEK key, the last 2 from the old server? I created the master key on the new server, as well as the service master, (then set up the DEK from the backup DEK from the old machine and it fails with permissions issue).
USE Northwind
CREATE CERTIFICATE NorthwindTDE
FROM FILE = N'C:\SQL\Certs\NorthwindTDE'
WITH PRIVATE KEY (FILE = N'C:\SQL\Certs\NorthwindTDE.bkey',
DECRYPTION BY PASSWORD = 'mypassword');
Msg 15208, Level 16, State 6, Line 10
The certificate, asymmetric key, or private key file is not valid or does not exist; or you do not have permissions for it.
April 27, 2020 at 1:13 am
I think I have it. Build the DMK and restore all the others.
Viewing 2 posts - 1 through 1 (of 1 total)
You must be logged in to reply to this topic. Login to reply