question

rehaan avatar image
rehaan asked

TDE Encryption Certificate expired

Hi, When I create a TDE Certificate from backup it says it is expired? Should I replace it? What should I do so that my certificate is not expired? Thanks
sql server 2012encryptiontde
10 |1200
Toggle Comment visibility. Current Visibility: Viewable by all users

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

1 Answer

·
Magnus Ahlkvist avatar image
Magnus Ahlkvist answered
If it's expired, it's expired. TDE will continue to work, but you probably want to create a new certificate and reencrypt the database encryption key using the new server certificate. So: Create a new server certificate, and then run ALTER DATABASE ENCRYPTION KEY ENCRYPTION BY SERVER CERTIFICATE . The TDE encryption won't have to be redone in the database, all you change with this is the encryption of the database key, which is in turn used to encrypt the data.
1 comment
10 |1200
Toggle Comment visibility. Current Visibility: Viewable by all users

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

rehaan avatar image rehaan commented ·
Thanks Maghus Alkvist
0 Likes 0 ·

Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.