Todd's Blog

Todd's Tips for System Adminstrators

Connect

Securing SQL Traffic using Certificates

posted on

I am deploying Microsoft Bitlocker Administration and Monitoring (MBAM) for a customer and one of the things we want to do is encrypt the traffic between the front end application server and the SQL Server. Here is what the topology looks like from TechNet.

Securing the connection between the two servers is relatively straight forward. First get a certificate from your favourite Certificate authority (can be internal or can be 3rd party in this case, your choice) and import it into your personal certificate store. What kind of cert do you need, check TechNet for the answer to that question. Basically it needs to be able to handle server authentication. Once imported, right-click on the certificate and manage the keys.

Screenshot for managing certificates

Here you assign read access to the keys to the account that runs the database service which will use the certificate. In my case I used a service account of srvdbsi01 so I assign that account the rights of read.

Screenshot of the properties for manage keys

Open SQL Configuration Manager. Expand SQL Server Network Configuration and right-click on Protocols for MSSQLSERVER or whatever the name of the instance you want to secure is.

Properties-for-protocols-SQL-Server

Next set the certificate by selecting it from the pull down list.

Certificate-For-Securing-SQL-Server

Then click on the flags tab and set the Force Encryption to Yes.

Force-Encryption-SQL-Server

Now restart the SQL service and you’ll be good to go.

SQL Server DBA Event: Windows PowerShell Night

posted on

16th September, 2010 – Microsoft Canada Ottawa Office
5:45pm

Session 1: Windows PowerShell for the SQL Server DBA (6:00PM – 7:00PM)

Presenter: Edwin Sarmiento

Windows PowerShell is becoming the scripting language of choice for managing Microsoft servers and workstations. And while T-SQL is still the scripting language for DBAs to administer and manage SQL Server, there are tons of stuff that can be easily done with Windows PowerShell.

In this session, learn Windows PowerShell from the ground up and how you can use it with SQL Server Management Objects (SMO) to administer and manage a SQL Server instance

Session 2: Your SQL Server DBA PowerShell Scriptbox (7:15PM to 8:15PM)

Presenter: Edwin Sarmiento

Do your day-to-day tasks with Windows PowerShell. And while Windows PowerShell is not intended to replace T-SQL, see how a multi-line T-SQL script can be translated in a one-liner code in Windows PowerShell. In this session, you will see how to use Windows PowerShell to perform tasks such as run SQL Server audits, check for SQL Server Agent job and backup status, generate backups and many more.

Edwin Sarmiento works as a Senior SQL Server DBA/Windows Engineer for Pythian in Ottawa, ON in Canada. Prior to joining Pythian, he was a senior systems engineer/DBA for Fujitsu Asia Pte Ltd in Singapore and is responsible for maintaining 200+ servers and databases for a global client in 10 countries.  He is very passionate about technology but has interests in music, professional and organizational development, leadership and management matters when not working with databases.  He lives up to his primary mission statement – "To help people grow and develop their full potential as God has planned for them"
He wants the whole world to know that the FILIPINO is a world-class citizen and brings JESUS CHRIST to the world.

Register for this event

OttawaSQL.net December Event: SQL Server Linked Servers and Failover Clusters

posted on

www.OttawaSQL.net

December 3rd Evening Event

Session 1: Setting Up and Using SQL Server Linked Servers, Jean Sigouin

Session 2: DemoFest – SQL Server 2008 Failover Cluster on Windows Server 2008, Edwin Sarmiento

Date: Thursday, December 3rd, 2009

Time: 6:00 PM to 8:30 PM

Venue: Microsoft Ottawa Office

RSVP: http://www.clicktoattend.com/?id=143475

Event Sponsors:

dreamdigital.comopulentasp.com

Pizza and pop will be provided by our event sponsors Dream Digital ( dreamdigital.com ) and Opulent ASP Development Inc. ( OpulentASP.com )

Session 1: Setting Up and Using SQL Server Linked Servers, Jean Sigouin

Having access to data, wherever it might be is critical for business.  In a world where data is stored and distributed onto multiple database servers and multiple server platforms, it’s important to have the tools to bring it all together in a seamless, integrated point of access.  The goal of this session is to show the DBA how to use SQL Server’s “Linked Server” capabilities to build bridges between a SQL Server instance and separate SQL Servers, Oracle, Access, Excel and pretty much any other data source out there.  You will see how to retrieve, combine and modify data from a linked SQL Server.  Techniques to abstract linked server objects to improve usability and simplify queries will also be covered.

Jean Sigouin

Speaker Bio:

Jean Sigouin began his career as a software and database designer at an aerospace company then continued at a biomedical high-tech manufacturing company.  Jean has been working in IT for 20 years as a DBA, software architect, business analyst, development team manager and developer.  He has been a SQL Server consultant for the last 2 years.  Jean has been administering SQL Servers and developing databases for the last 15 years.  Jean has expertise in designing large databases tuned for highly transactional OLTP database systems, SSIS, SSRS, SSAS, T SQL coding, database tuning & optimization, replication, administration and disaster recovery.

Session 2: DemoFest – SQL Server 2008 Failover Cluster on Windows Server 2008, Edwin Sarmiento

This session is all about demos – providing step-by-step instructions on how to install SQL Server 2008 Failover Cluster instance on a Windows Server 2008 cluster.

Edwin Sarmiento

Speaker Bio:

Edwin M. Sarmiento (MVP for SQL Server) works as a Senior SQL Server DBA/Systems Engineer for The Pythian Group in Ottawa, Canada. He is very passionate about technology but has interests in music, professional and organizational development, leadership and management matters when not working with databases. He lives up to his primary mission statement – “To help people grow and develop their full potential as God has planned for them.”.

Note: No one will be admitted by building security after 5:55 PM, and the event will start promptly at 6:00 PM.

OttawaSQL.net is a community group of Ottawa area developers and IT professionals.  We share an interest in Microsoft’s data technologies especially:  SQL Server, SharePoint, PerformancePoint, Workflow Foundations, LINQ, ADO.NET and Entity Framework.