Hi ,
How do we install a certificate for enabling security on MS -SQL Server 2005?
I tried to install through MMC but it says no " certificate authority found " . Any
help will be highly appreciated , Thanks to you all in advance :-)
Best Regards,
Sudhansu Tiwari
helloi use Visual Web Developer and SQL server 2005 express , how can i enable service borker of my sql server ?thaks for any helpderin
View 1 Replies View Relatedwe wonder about the tradeoffs of t-sql vs clr in sql server 2005 especially from a memory perspective. Is there documentation available on this subject?
View 8 Replies View RelatedHi, We are trying to implement Service Broker between SQL Server Express and SQL Server on the Same machine and we are having problems with certificates. We are creating a certificate on SQL Server, backing up the certificate on a file system and then loading certificate on the SQL Server Express from the file and we are keep getting the following error: Msg 15208, Level 16, State 1, Line 1 The certificate, asymmetric key, or private key file does not exist or has invalid format.
Following script runs fine on SQL Server.
Code Snippet
use master
Create Master Key Encryption BY Password = '45Gme*3^&fwu';
BACKUP MASTER KEY TO FILE = 'C:ServiceBrokerPrivateKeyMasterB.pvk'
ENCRYPTION BY PASSWORD = '45Gme*3^&fwu'
Create Certificate EndPointCertificateC
WITH Subject = 'C.Server.Local',
START_DATE = '06/01/2006',
EXPIRY_DATE = '01/01/2008'
ACTIVE FOR BEGIN_DIALOG = ON;
BACKUP CERTIFICATE EndPointCertificateC
TO FILE = 'C:ServiceBrokerEndPointCertificateC.cer'
Following script runs on SQL Server Express:
Code Snippet
Create Certificate EndPointCertificateC
From FILE = 'C:ServiceBrokerEndPointCertificateC.cer'
WITH PRIVATE KEY (
FILE = 'C:ServiceBrokerPrivateKeyMasterB.pvk',
DECRYPTION BY PASSWORD = '45Gme*3^&fwu'
);
If we run the script other way around, it works fine. If we use the SQL Server on some other machine, the script works fine. But only on the same machine, it throws this error. We made sure the permissions and everything. Let us know if there is any work around or what are we doing wrong.
Any help is appreciated. Thank you,
I have a Web site that has a database backend, which stores user information. I would like to encrypt the user information in a granular way.
View 16 Replies View RelatedHi there U all,
for the third time I am installing SQL-Server 2005 express and i have an error.
Cannot install sql because .NET 2.0 framework is missing allthough I have the .NET 2.0 framework allready installed and even re-installed it too. When trying again I get the message that there isn't an SSL-certificate present.
My question is, would this probably cause the error when installing?
Anyone?
Grtz and thx,
Recloose(Thomas)
hey,
i have a problem, to import a self signed openssl certificate into the sql server 2005.
my final idea is to get encrypted columns from the database over an jdbc connection in a java client.
when i use a certificate generated by the sql server 2005, i can encryt columns of a table. then i catch the
the result in my java client. but in java, i need a keystore with the private key of the certificate.
ok. i have export the the certificate and the private key of the sql server 2005.
problem: in a keystore i can only import the certificate (signed public key) but not the private key.
my new idea is to import an openssl certificate or an certificate generated by the keytool (java) into the
sql server 2005 and encypt the data with the imported certificate. Problem: The SQL Server give me an
Exception: (Sorry i drag & drop the exception, is written in german)
Msg 15208, Level 16, State 1, Line 2
Die Datei für das Zertifikat, den asymmetrischen Schlüssel oder den privaten Schlüssel ist nicht vorhanden oder weist ein ungültiges Format auf.
My Import Statement is:
CREATE CERTIFICATE InsuranceCertOpenSSL
FROM
FILE = 'E:masterkeysinsuranceservice_tomcat_apr_x509_certificate_with_cygwin_openssl_20060630insuranceservice_tomcat_x509_certificate_with_openssl.crt'
WITH PRIVATE KEY (
FILE = 'E:masterkeysinsuranceservice_tomcat_apr_x509_certificate_with_cygwin_openssl_20060630insuranceservice_tomcat_x509_certificate_with_openssl_private.key',
DECRYPTION BY PASSWORD = 'testit2_',
ENCRYPTION BY PASSWORD = 'testit2_'
)
I use password encryption, and not the internal master key (or service master key)
Hope for help :)
nils
I
am using SQLServer 2005 and .NET when I use the following
statements:
using (TransactionScope
objTransaccion = new TransactionScope(TransactionScopeOption.Required))
...
objTransaccion.Complete();
I
get the following error:
System.Transactions.TransactionManagerCommunicationException:
Network access for Distributed Transaction
Manager (MSDTC) has been disabled.
Please enable DTC for network access in the
security configuration for MSDTC using the Component Services Administrative
tool. (Exception from HRESULT: 0x8004D024)
I
am trying to enable the DTC on Windows 2000 Server but the references seem to
be to Windows 2003 Server. Any
idea on how to do it on 2k Server?
TIA, Brad.-
Hi
I am trying to install SQL Server 2005 Express on my machine, which has Windows Server 2003 with Service Pack 1. I could not able to install properly and i am getting error always.
Here is the Error I am getting always "The certificate chain was issued by an authority that is not trusted" . I am trying for past few days i could not able to resolve.
Please help
Thanks
Here is the Error message from Summary.txt
Microsoft SQL Server 2005 9.00.1399.06
==============================
OS Version : Microsoft Windows Server 2003 family, Service Pack 1 (Build 3790)
Time : Tue Sep 05 12:31:18 2006
--------------------------------------------------------------------------------
Machine : SERVIDORCC
Product : Microsoft SQL Server 2005 Express Edition
Product Version : 9.00.1399.06
Install : Failed
Log File : C:Archivos de programaMicrosoft SQL Server90Setup BootstrapLOGFilesSQLSetup0008_SERVIDORCC_SQL.log
Last Action : InstallFinalize
Error String : SQL Server Setup could not connect to the database service for server configuration. The error was: {Microsoft}{SQL Native Client}SSL Provider: The certificate chain was issued by an authority that is not trusted.
Error Number : 29515
--------------------------------------------------------------------------------
SQL Server Setup failed. For more information, review the Setup log file in %ProgramFiles%Microsoft SQL Server90Setup BootstrapLOGSummary.txt.
Time : Tue Sep 05 17:12:41 2006
I have SQL 2005 (v9.0.3042) on Windows Server 2003. The sql server is running under LocalSystem account.
I am trying to enable SSL encryption as described in the article http://support.microsoft.com/kb/316898.
I have logged onto the machine as an administrator when creating a new certificate request in MMC. I have set "Force Encryption" to true on server and restarted the server.
However all my clients (.net code, SQL Server Management Studio) successfully connect to the server without "Encrypt=Yes". I expected to see a ssl error or some kind of error denying connection because the cliend did not request ssl ecnryption.
what am I missing? any help would be greatly appreciated.
thanks
Hi there,
I am trying to create an un-attended SQL 2005 Express install. I have successfully made my own template.ini file to install SQL the way I like but I cannot find a way to make it install with the "Ad hox remote queries" option enabled.
Is there anyway to do this? I can't seem to find any switches in the INI file to allow this.
Thanks
Joseph Beckett
I am trying to upgrade from SQL 2005 Standard to Enterprise in our Production environment. I am testing this currently on a VM to document and script the steps necessary what we would need to do during a maintenance window when I can have this server offline.
I am getting the following error:
'SQL Server Setup has encountered the following problem: [Microsoft][SQL Native Client][SQL Server]
The certificate cannot be dropped because one or more entities are either signed or encrypted using it.. To continue, correct the problem, and the run SQL Server Setup again.'
How can I find the entries, or remove them. We do not typically do this, and I explicitly didn't do this on the test server. I have tried this with 2 different VM builds and I'm getting the same error.
When going in to Control Panel, AddRemove Programs, SQL 2005 x64, Change, I can rerun the Suspended setup and it errors with the same Problem.
How can I get around this short of uninstalling and reinstalling the product? Is there another part of the SKUupgrade switch I need to append? I'm saving this as a batch file and running it from the command line.
Here is my command line entry:
Net use Z: /delete
Net use Z: "\<Fileserver>SoftwareMicrosoftSQL2005Enterprise Edition x64"
start /wait Z:serverssetup.exe ADDLOCAL=SQL_Engine INSTANCENAME=MSSQLSERVER UPGRADE=SQL_Engine SKUUPGRADE=1 /qb
I would like to use SSL on SQL Server 2005.
With SSL, is all traffic from the client to the database on port 443 ? Or are other ports needed ?
With Windows Certificate Management Snap-in, a request for a certificate assumes that there is a local Certificate Authority. I don't have one and it is my understanding that I should buy a third party certificate to avoid a man in the middle attack. With IIS there is a certificate request process. Is there something similar I should use with SQL ?
Thank you.
I am using SQL Server 6.5. By default TCP/IP protocol is not enabled (1433 port is not opened by the server). How can I enable this so that I can use a JDBC driver to connect to it.
In SQL Server 2000, the "SQL Server Network Utility" helps us to enable the TCP/IP protocol. But not able to figure our how/where this can be done in 6.5.
Thanks for any help
I have log shipping enabled on databases(primary and secondary) and works fine. I need to implement TDE on the database. I have experience on implementing TDE on databases which are not used for log-shipping.
What are the steps needed to setup TDE which are involved with log-shipping.
I am trying to enable CDC feature in SQL Server 2012 Enterprise Edition ( 11.0.2424.0).The command to enable CDC for Database worked fine, but the command for enabling CDC on Table failed.Command used for enabling CDC on table is as follows.
USE DatabaseName
GO
EXEC sys.sp_cdc_enable_table
@source_schema = N'dbo',
@source_name = N'TableName',
@role_name = NULL,
@supports_net_changes = 1
Following is the error message got
Msg 22832, Level 16, State 1, Procedure sp_cdc_enable_table_internal, Line 623...Could not update the metadata that indicates table [dbo].[TableName] is enabled for Change Data Capture. The failure occurred when executing the command '[sys].[sp_cdc_add_job] @job_type = N'capture''. The error returned was 22836: 'Could not update the metadata for database DatabaseName to indicate that a Change Data Capture job has been added. The failure occurred when executing the command 'sp_add_ jobstep_ internal'. The error returned was 14234: 'The specified '@server' is invalid (valid values are returned by sp_helpserver).'. Use the action and error to determine the cause of the failure and resubmit the request.'. Use the action and error to determine the cause of the failure and resubmit the request.
SSISDB 2014 - Enabling CLR - Is there are kind of security risks for enabling CLR when creating SSISDB?
View 0 Replies View RelatedHi
I have an existing instance of sql express 2005 w/advanced services installed. When I installed I did not install full text search. Is there a way I can enable full text search on this existing instance?
Thanks
We are planning to 2014 migration in few days.
ServerA----- ServerA1
ServerB---- ServerB1
In serverA we have 5databases. And making 5databases as availability group. The replica is ServerA1
In server B we have 3 databases. And the making those 3 databases as an availibility group. The secondary replica is ServerB1.
What is the best option to configure the quoram drive in this situation.
Also Server A1 & Server B1 also we use for reporting purposes.
We have some sensitive data. Is it possible to delete the data while reading the data?
How the memory optimization feature work with always on?
I'm trying to activate FILESTREAM on my SQL Server 2012, however i'm not accomplishing it. I've tried to follow this instructions: [URL] ...
My SETUP is the following:
Windows 8 (64 bit)SQL Server Standard Edition - Service Pack 1 (64 bit)SQL Version: (11.0.3128.0)
When I go to the configuration manager, on the FILESTREAM tab has a message:
"A previous FILESTREAM configuration attempt was incomplete.
FILESTREAM may be in an inconsistent state until re-configured."
If I click Enable FILESTREAM and "Apply", I get the following message:
"There was an unknown error applying the FILESTREAM settings. Check the parameters are valid. (0x80070002)"
I also read somewhere to run "EXEC sp_configure", which produces the result:
"filestream access level - 0 2 2 0"
Running "SELECT SERVERPROPERTY ('FilestreamEffectiveLevel');" returns 0.
Hi,
I€™m experimenting with creating Certificates for SQL Server. I can create a certificate ok, using the Certification Authority Wizard, however when I go into SQL Server Configuration Manager and view Protocols for MSSQLServer/Properties and click on the drop down list for Certificate €“ there€™s nothing there. When I create the certificate using the Wizard, I€™m only given the following stores to use: Personal, Trusted Root Certification Authorities, Enterprise Trust, Intermediate Certification Authorities, Trusted Publishers, Untrusted Certificates, Third-Party Root Certification Authorities and Trusted People. Does anyone know where I should be Importing the certificate to, or have any tips on what I need to do to view the certificate there?
Thanks,
Hi all, I created a certificate in the master database so that my endpoint could use the certificate.
I dropped the endpoint and dropped the certificate and added a new one and created a new endpoint because the earlier one had a weak password.
Everything has been fine till we restarted the server. Master, model start up fine but now I am getting these errors.
Starting up database 'master'.
2007-09-25 10:40:53.62 spid5s Recovery is writing a checkpoint in database 'master' (1). This is an informational message only. No user action is required.
2007-09-25 10:40:53.77 spid5s CHECKDB for database 'master' finished without errors on 2007-02-04 01:00:14.597 (local time). This is an informational message only; no user action is required.
2007-09-25 10:40:53.90 spid5s SQL Trace ID 1 was started by login "sa".
2007-09-25 10:40:53.95 spid5s Starting up database 'mssqlsystemresource'.
2007-09-25 10:40:54.24 spid5s Server name is 'Billing2348'. This is an informational message only. No user action is required.
2007-09-25 10:40:54.24 spid9s Starting up database 'model'.
2007-09-25 10:40:54.40 Server Error: 17190, Severity: 16, State: 1.
2007-09-25 10:40:54.40 Server FallBack certificate initialization failed with error code: 1.
2007-09-25 10:40:54.40 Server Warning:Encryption is not available, could not find a valid certificate to load.
2007-09-25 10:40:54.40 Server Error: 17182, Severity: 16, State: 1.
2007-09-25 10:40:54.40 Server TDSSNIClient initialization failed with error 0x7e, status code 0x60.
2007-09-25 10:40:54.40 Server Error: 17182, Severity: 16, State: 1.
2007-09-25 10:40:54.40 Server TDSSNIClient initialization failed with error 0x7e, status code 0x1.
2007-09-25 10:40:54.40 Server Error: 17826, Severity: 18, State: 3.
2007-09-25 10:40:54.40 Server Could not start the network library because of an internal error in the network library. To determine the cause, review the errors immediately preceding this one in the error log.
2007-09-25 10:40:54.40 Server Error: 17120, Severity: 16, State: 1.
2007-09-25 10:40:54.40 Server SQL Server could not spawn FRunCM thread. Check the SQL Server error log and the Windows event logs for information about possible related problems.
I even copied the master database to a dev server and started it up deleted all certificates and endpoints but it gives the same error.
Hi There
Are there limitations to express and certificates, i can create certificates in express. But when i try to import a certificate from another server (developer edition) into my express edition i get his error:
The certificate, asymmetric key, or private key file does not exist or has invalid format
When i use the same certificate backup on non express editions it works 100% , is it not possible or must it be done differently ?
Thanx
Hi All,
I was trying to install Sql Server Express 2005 using the setup made using Visual Studio 2005 Publisher Wizard, as a pre-requisite. During this i'm getting the following error...
"SQL Server Setup could not connect to the database service for server configuration. The error was: [Microsoft][SQL Native Client]SSL Provider: The certificate chain was issued by an authority that is not trusted."
What does this mean? Anyone is familiar with this, then pray please post a reply. I'm in the middle of nowhere now....
Thanks in Advance....
VigithVG
When I try to install SQL 2005 Developer September CTP on Windows XP Professional it returns an error "SQL Server Setup failed to
View 21 Replies View RelatedI must prepare a procedure which should export some data from some DB columns, but these data must be encrypted using the OpenSSL protocol, to be sent to an external recipient.This recipient sent to me a "public" certificate in PEM format, to what I understood (it is a file beginning with the expression "-----BEGIN CERTIFICATE-----", then a long Base64 sequence and then "-----END CERTIFICATE-----").
Then I didn't create the certificate nor I am a certification authority: I just have this public key (or, at least, a file from which I can extract a public key) and I must use it to encrypt data in order to obtain an output which must be analogue to what I can obtain when using this OpenSSL command line instruction:openssl rsautl -encrypt -in CF.txt -out CF.enc -inkey SaniteICF.cer -certin -pkcs
Then the question is: starting from this PEM file and nothing else, can I import it and store an asymmetric key or a certificate in SQL Server and use it to encrypt data to be exported?
I want to use a certificate with 10-years expiration date. I created a new template certificate, based on default computer certificate, and I only change expiration date to 10 years.
In SQL Server SSL configuration, I dont view this certificate. In only view certificate created with the "Computer" template (with validity period of 365 days). All others certificates based on template are invisible to SQL Server
How can I use a custom template instead of the default "computer" template ?
Hi
I am trying to install SQLEXPRESS 2005 and i get this error: SQL Server Setup faild to retrieve the SSL Certificate Name and an OK button and when i hit the button, the installiatoin stops.
The Event log shows this: Product: Microsoft SQL Server 2005 -- Error 1603. SQL Server Setup failed to retrieve the SSL Certificate Name.
Does anyone know what to do?
Thanx
When adding SSL certificate to SQL Server, client applications no longer connect.
Error: 17832, Severity: 20, State: 10
2007-04-03 11:42:52.82 server Connection opened but invalid login packet(s) sent. Connection closed..
SSL is not even enabled and we still have this problem. When the cert is removed, then the app works???
EDIT: THis seems to be happening when we use dbopen().
Thank you,
Joel
I attempted to setup database mirroring using a High Availability scenario but when I installed SQL is chose to use local system accounts for all the services. Consequently, I stubled upon a microsoft article explaining how to setup mirroring using local system accounts and certificate authentication but I am stil not able to get it to work. When I try ti initiate the mirror from the mirror server I receive an error stating "Neither the partner nor the witness server instance for database "EDENLive" is available. Reissue the command when at least one of the instances becomes available." I have checked all the endpoints and everything seems to be in order. I even checked to make sure that each server was listening on the appropriate ports and I AM able to telnet to the ports. Please help!
I was installing application software that was trying to install SQL Server 2005 and received the following error message.
"Setup failed because Service MSSQLServerADHelper is disabled for the current hardware profile. Services must be set with the current Hardware Profile logon property profile enabled."
Simple fix for most but I do not know how to do what it asks.
Thanks, Bruce
Hi All,
I'm new to SQL Server Express. But I need to find out how easy it is to create custom types with SQL Server Express because we have to represent house numbers as a custom type in the database. After enabling the CLR integration with the SQL Server Surface Area Configuration tool, I created an SQL Server Project with VS 2005 Pro., created a custom type called HouseNo, deployed it to a database and finally created a table with a column of that custom type. But when I tried to use the option 'Show Table Data' for that table, the following errors always appeared
SQL Execution Error
Executed SQL statement SELECT NP.ToString() AS NP From Table1
Error Source : .NET SqlClient Data Provider
Error Message : Execution of user code in the .NET Framework is disabled. Enable "CLR Enabled" configuration Option. -- I think I've already enabled it.
Does anyone know how to solve the problem? Just one more question, for a custom type implementing the IComparable interface, would SQL Server Express uses the CompareTo method to perform sorting?
Thanks!
Regards,
Nathan
----------------------------------------------------------------------------------------------
The SQL Server Epxress is newest and the following is code for the custom type.
---------------------------------------------------------------------------------------------
using System;
using System.Data;
using System.Data.SqlClient;
using System.Data.SqlTypes;
using Microsoft.SqlServer.Server;
[Serializable]
[Microsoft.SqlServer.Server.SqlUserDefinedType(Format.UserDefined, IsByteOrdered = true, MaxByteSize = 8000)]
public class HouseNo : INullable, IComparable, IBinarySerialize
{
// Private member
private String number;
private String letter;
private bool m_Null;
public HouseNo()
{
Number = "0";
Letter = "0";
}
public HouseNo(String number, String letter)
{
Number = number;
Letter = letter;
}
public string Number
{
get { return number; }
set { number = value; }
}
public string Letter
{
get { return letter; }
set { letter = value; }
}
public int CompareTo(Object obj)
{
if (obj is HouseNo)
{
HouseNo hno = (HouseNo) obj;
int numCompare = Number.CompareTo(hno.Number);
return (numCompare == 0 ? Letter.CompareTo(hno.Letter) : numCompare);
}
else throw new Exception("Obj is not a HouseNo");
}
public override string ToString()
{
// Replace the following code with your code
return Number+Letter;
}
public bool IsNull
{
get
{
// Put your code here
return m_Null;
}
}
public static HouseNo Null
{
get
{
HouseNo h = new HouseNo();
h.m_Null = true;
return h;
}
}
public static HouseNo Parse(SqlString s)
{
if (s.IsNull)
return Null;
HouseNo u = new HouseNo();
// Put your code here
return u;
}
#region IBinarySerialize Members
public void Read(System.IO.BinaryReader r)
{
Number = r.ReadString();
Letter = r.ReadString();
}
public void Write(System.IO.BinaryWriter w)
{
w.Write(Number);
w.Write(Letter);
}
#endregion
}
I'm trying to enable the Service Broker for Sql Server 2005 because I want to be able to use a SqlDependency object.
I ran the following query to see if my local sql server service broker was enabled:
SELECT is_broker_enabled FROM sys.databases WHERE name = 'dbname';
It came back with a value of 0 (which means it is not enabled).
I tried executing the following sql command to enable it:
ALTER DATABASE dbname SET ENABLE_BROKER;
The query has been running for over 5 mins and just keeps spinning (should it take this long to enable the Service brfoker), so I cancel it.
I even try to issue the command to see if the service broker is enabled after I cancel the query and it is not enabled.
How can I properly enable the Service Broker?