Post reply

SQL Server 2005 Encryption key and certificate permissions

  • June 10, 2010 at 3:12 pm

    #387129

    For auditing purposes, I need to provide a list of logins who have been granted permission to encryption keys and certificates. Does anyone know of a script I can use for this purpose?

  • October 26, 2010 at 2:40 pm

    #1242556

    I don't remember where I found this query, it lists everyone with permissons to certificates and keys in a database.

    --Current assigned permissions

    SELECT dp.*, su.*

    FROM sys.database_permissions dp

    INNER JOIN sys.database_principals su

    ON dp.grantee_principal_id = su.principal_id

    WHERE dp.class IN (24,25)

    Questions for you, we are just getting started with encryption, I thought I had everything figured out that was needed then a developers comes to me and said they need additional permissions, which is what you were asking about.

    Finally the question, do I need to give individual permissions to all users that need to use certificates and keys? Do I use the GRANT CONTROL ON CERTIFICATE::xxx TO username to give permissions?

Viewing 2 posts - 1 through 1 (of 1 total)

You must be logged in to reply to this topic. Login to reply