SQL Server数据库主密钥
我运行了以下脚本来为我创建的某个数据库创建主密钥,但是我无法在节点中看到它们的密钥(请参阅快照);有谁知道为什么?我期待听到你的回复,谢谢你。
USE AdventureWorks
GO
CREATE MASTER KEY ENCRYPTION BY PASSWORD = '23987hxJ#KL95234nl0zBe'
GO
2 个答案:
答案 0 :(得分:15)
您无法在SSMS GUI中看到此信息,但如果您运行以下操作,则可以查看数据库是否具有主密钥:
SELECT d.is_master_key_encrypted_by_server
FROM sys.databases AS d
WHERE d.name = 'AdventureWorks';
答案 1 :(得分:3)
以下是一些测试DMK存在的方法。
请注意,sys.databases中的[is_master_key_encrypted_by_server]列可以显示为0,但DMK已存在且已被SMK加密而丢弃。
我希望这会有所帮助。
======================
-- Test for existence of a DMK. If it does not exist, then create it.
-- Method 1:
IF (SELECT COUNT(*) FROM sys.symmetric_keys WHERE name LIKE '%DatabaseMasterKey%') = 0
BEGIN
CREATE MASTER KEY ENCRYPTION BY PASSWORD = 'ljlLKJjs$2@l23je'
END
-- Method 2:
IF NOT EXISTS (SELECT * FROM sys.symmetric_keys WHERE name LIKE '%DatabaseMasterKey%')
BEGIN
SELECT 'DMK does not exist'
CREATE MASTER KEY ENCRYPTION BY PASSWORD = 'ljlLKJjs$2@l23je'
END
ELSE
BEGIN
SELECT 'DMK exists'
END
-- Demo showing that is_master_key_encrypted_by_server in sys.databases does not show whether the DMK exists or not.
DROP MASTER KEY
GO
CREATE MASTER KEY ENCRYPTION BY PASSWORD = 'ljlLKJjs$2@l23je'
GO
SELECT is_master_key_encrypted_by_server, name
FROM sys.databases
WHERE name = 'GalaxianTest1'
--> is_master_key_encrypted_by_server name
--> 1 GalaxianTest1
USE GalaxianTest1
GO
-- This command causes the DMK to not be encrypted by the SMK.
ALTER MASTER KEY DROP ENCRYPTION BY SERVICE MASTER KEY
-- This command now shows 0, although the DMK still exists.
SELECT is_master_key_encrypted_by_server, name
FROM sys.databases
WHERE name = 'GalaxianTest1'
--> is_master_key_encrypted_by_server name
--> 0 GalaxianTest1
-- Try creating a new DMK. This will error because the DMK still exists.
CREATE MASTER KEY ENCRYPTION BY PASSWORD = 'ljlLKJjs$2@l23je'
GO
--> Error: There is already a master key in the database. Please drop it before performing this statement.
DROP MASTER KEY
GO
--> Command(s) completed successfully.
SELECT is_master_key_encrypted_by_server, name
FROM sys.databases
WHERE name = 'GalaxianTest1'
--> is_master_key_encrypted_by_server name
--> 0 GalaxianTest1
-- Note: this is the same message as above when the DMK existed, but had been dropped from encryption by service master key.
相关问题
最新问题
- 我写了这段代码,但我无法理解我的错误
- 我无法从一个代码实例的列表中删除 None 值,但我可以在另一个实例中。为什么它适用于一个细分市场而不适用于另一个细分市场?
- 是否有可能使 loadstring 不可能等于打印?卢阿
- java中的random.expovariate()
- Appscript 通过会议在 Google 日历中发送电子邮件和创建活动
- 为什么我的 Onclick 箭头功能在 React 中不起作用?
- 在此代码中是否有使用“this”的替代方法?
- 在 SQL Server 和 PostgreSQL 上查询,我如何从第一个表获得第二个表的可视化
- 每千个数字得到
- 更新了城市边界 KML 文件的来源?