SQL 2005 Data Encryption and Clustering

  • (first off, I'm not a SQL DBA , I'm a developer but I'm filling in while waiting for a full time replacement for the previous DBA is hired - some of the more advanced items I'm learning on the fly)

    We have a database that we are required to use encryption for some of the columns.

    It will reside on a sql 2005 Cluster.

    I have found plenty of information on using encryption (Creating the database master key from the Service Master Key, creating the certificate, backing up the keys, etc.) but I have not found anything on how this interacts with Clustering -

    I could see a potential problem - as I understand it, The Service Master Key is instance specific, so Then would each node of the cluster have a different Service Master Key? and as a result each node have a different Database master Key?

    I am concerned about problems with the data if/when the cluster rolls over between Nodes.

    I may be way off on this, but I think I would need to create the database master key on one of the nodes, back up both the service master key and database master key, then restore both to the other node in order for them to both to be able to encrypt and decrypt the data.

    Thank you

    Duane Rezac

  • the clustered sql server instance uses a virtual network name which is shared between nodes.

    There should be no issue

    -----------------------------------------------------------------------------------------------------------

    "Ya can't make an omelette without breaking just a few eggs" 😉

Viewing 2 posts - 1 through 1 (of 1 total)

You must be logged in to reply to this topic. Login to reply