Issue
When following the Enabling Transparent Data Encryption configuration steps in the SX-SRVR Security Expert - Client Server - Installation Guide, an error is seen running the supplied script to backup the certificate and encryption key.
- Cannot find the certificate ‘TDECertificate’, because it does not exist or you do not have permission.
Product Line
EcoStruxure Security Expert
Environment
- Security Expert Server
- Microsoft SQL Server
Cause
When copying the text from the SX-SRVR Security Expert - Client Server - Installation Guide the formatting contains a carriage return that stops the script from being able to be run in SQL.
Resolution
1. Ensure the correct database is being run against by selecting it from the drop down in the SQL Server Management Studio menu bar or by adding "use master" as the first line in the script.
2. Create folders "c:\storedcerts" and "c:\storedkeys".
3. Fix the script by removing the carriage return breaking up the "TDE Certificate" file name.
The following script was successfully used to backup one file in each directory.
use master;
go
BACKUP CERTIFICATE TDECertificate TO FILE = 'c:\storedcerts\TDE Certificate'
WITH PRIVATE KEY ( FILE = 'c:\storedkeys\TDE Key' ,
ENCRYPTION BY PASSWORD = 'Hard_drive'
);
GO