带有PKI的SQL Server TDE --将P12/PKX转换为PVK/DER格式
带有PKI的SQL Server TDE --将P12/PKX转换为PVK/DER格式
提问于 2016-09-28 12:17:53
要将TDE用于Server,我们必须使用PKI证书。证书的格式为.p12(.pkx)。微软推出了一款用于Server的证书转换器。使用它-它创建三个证书和一个pvk文件。
C:\Program Files\Microsoft\PVKConverter>PVKConverter.exe -i D:\path\nameofpkicert.pkx -o mycert -d Password -e Password2
Processed PFX certificate D:\path to generat
e 3 PVK/DER certificate pairs.
Generated PVK/DER certificate pairs:
(mycert_1.cer)
(mycert_2.cer)
(mycert_3.cer, mycert_3.pvk)如何将此文件导入Server?
回答 1
Database Administration用户
回答已采纳
发布于 2016-09-28 15:10:05
它似乎适用于mycert_3.cer:
USE master;
CREATE MASTER KEY ENCRYPTION BY PASSWORD = 'Password';
GO
USE master
OPEN MASTER KEY DECRYPTION BY PASSWORD = 'Password';
GO
CREATE CERTIFICATE TestCert
FROM FILE = 'D:\path\mycert_3.cer'
WITH PRIVATE KEY (FILE = 'D:\path\mycert_3.pvk',
DECRYPTION BY PASSWORD = 'Password2');
GO
USE TDE_Test
CREATE DATABASE ENCRYPTION KEY
WITH ALGORITHM = AES_256
ENCRYPTION BY SERVER CERTIFICATE TestCert;
GO
ALTER DATABASE TDE_Test
SET ENCRYPTION ON;
GO页面原文内容由Database Administration提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://dba.stackexchange.com/questions/150869
复制相关文章
相似问题
腾讯云开发者
