Home 2016 May SQL Server: How to enable Transparent Data Encryption (TDE) on a Database?

SQL Server: How to enable Transparent Data Encryption (TDE) on a Database?

This article is half-done without your Comment! *** Please share your thoughts via Comment ***

In the previous post, I shared basic details about the Transparent Data Encryption (TDE) of the SQL Server.

Whenever we are encrypting our data or database, we should enable the TDE on a SQL Server Database Level.
After enabling, It will encrypt data files, page files, and backup files of the database.

Below are the necessary steps and T-SQL script to enable TDE on a Database.

Steps:

  • Create a master key.
  • Create or obtain a certificate protected by the master key.
  • Create a database encryption key and protect it with the certificate.
  • Set the database to use encryption.

    •  

    Sample script to enable TDE:

    Create the master key in Master Database:

    Create a certificate:

    Use the database to enable TDE:

    Associate the certificate to the Database:

    Enable encryption on the Database:

    Anvesh Patel
    SQL Server: Transparent Data Encryption (TDE) to Encrypt a DatabaseSQL Server: Script to enable Native Backup Compression for all Database Backups
    Comments: 2
    1. Santanu
      April 19, 2018 at 9:32 am

      How do we do same in mysql?

      • Anvesh Patel
        April 19, 2018 at 10:13 am

        Not sure about exact one, but below are few samples:
        https://www.dbrnd.com/2016/07/mysql-password-encryption-using-the-advanced-encryption-standard-algorithm-aes_encrypt/
        https://www.dbrnd.com/2016/07/mysql-choose-data-type-and-length-of-the-secure-hash-algorithm-sha/

    Anvesh Patel
    Anvesh Patel

    Database Engineer

    May 15, 2016 SQL Server, , , , , , , , , , , , , ,