Ms Sql 2005 An Error Occurred During Decryption
Contents |
“An error occurred during decryption” ★★★★★★★★★★★★★★★ Karthick P.K - karthick krishnamurthyJuly 18, 20120 Share 0 0 Problem Description an error occurred during decryption. (microsoft sql server error 15466) Linked server connection fails with below error { Failed to
An Error Occurred During Decryption. Linked Server
retrieve data for this request. (Microsoft.SqlServer.Management.Sdk.Sfc) —————————— ADDITIONAL INFORMATION: An exception occurred while executing a Transact-SQL
An Error Occurred During Service Master Key Decryption
statement or batch. (Microsoft.SqlServer.ConnectionInfo) —————————— An error occurred during decryption. (Microsoft SQL Server, Error: 15466) Msg 15593, Level 16, State 1, Line 1 An error occurred while decrypting
An Error Occurred During Service Master Key Decryption Linked Server
the password for linked login ‘distributor_admin’ that was encrypted by the old master key. The error was ignored because the FORCE option was specified. } Cause SQL Server service account was changed from services control manager (or) service master key was not backed up and restored when migrating SQL Server to another computer domain. { http://msdn.microsoft.com/en-us/library/ms187788.aspx an error occurred during service master key decryption 33094 To change the SQL Server service account, use SQL Server Configuration Manager. To manage a change of the service account, SQL Server stores a redundant copy of the service master key protected by the machine account that has the necessary permissions granted to the SQL Server service group. If the computer is rebuilt, the same domain user that was previously used by the service account can recover the service master key. This does not work with local accounts or the Local System, Local Service, or Network Service accounts. When you are moving SQL Server to another computer, migrate the service master key by using backup and restore. The REGENERATE phrase regenerates the service master key. When the service master key is regenerated, SQL Server decrypts all the keys that have been encrypted with it, and then encrypts them with the new service master key. This is a resource-intensive operation. You should schedule this operation during a period of low demand, unless the key has be
Recent PostsRecent Posts Popular TopicsPopular Topics Home Search Members Calendar Who's On Home » SQL Server 7,2000 » Security » An error occurred alter service master key force regenerate during decryption (Error:... An error occurred during decryption (Error: 15466, Severity: 16, State: 1.) an error occurred while decrypting master key that was encrypted by the old master key Rate Topic Display Mode Topic Options Author Message Tim-257797Tim-257797 Posted Tuesday, March 3, 2009 1:44 AM Grasshopper Group: General Forum Members an error occurred during service master key decryption (microsoft sql server, error: 33094) Last Login: Wednesday, May 18, 2016 8:41 PM Points: 12, Visits: 428 Hello Everyone:I hope someone can assist with my question:============================================================================================Environment:----------------Production Environment running: SQL Server 2005 - 9.00.2153.00 (Intel X86) Standard Edition Windows NT https://blogs.msdn.microsoft.com/karthick_pk/2012/07/18/linked-server-connection-fails-with-an-error-occurred-during-decryption/ 5.2 (Build 3790: Service Pack 1)Using a domain service account. The problem that was encountered:-------------------------------------------I have a two node cluster; I will call the nodes - node1 and node2. - SQL Server has been running on node1 since I started DBA support for the SQL Cluster. - Recently an incident occurred which caused SQL to failover onto node2. - When SQL started up the following errors were displayed http://www.sqlservercentral.com/Forums/Topic667093-6-1.aspx in the error log. 2009-02-21 11:06:59.90 spid5s Error: 15466, Severity: 16, State: 1. 2009-02-21 11:06:59.90 spid5s An error occurred during decryption. 2009-02-21 11:07:00.13 Server Error: 17190, Severity: 16, State: 1. 2009-02-21 11:07:00.13 Server FallBack certificate initialization failed with error code: 4. 2009-02-21 11:07:00.13 Server Warning:Encryption is not available, could not find a valid certificate to load. - In addition to this I noticed that the existing full text indexes could not be used. After a lot of investigation I ended up failing it back onto node1 again …… and the errors / warning disappeared and fti works. When SQL server starts up now, I receive the following message in the logs: 2009-02-23 19:06:12.87 Server A self-generated certificate was successfully loaded for encryption. My concern:---------------Is that if it ever fails over again …… the same problem will occur again. Backup of SMK--------------------Now that it is running on node 1 I have backed up the SMK using the command: BACKUP SERVICE MASTER KEY TO FILE = 'H:\smk_20090224.smk' ENCRYPTION BY PASSWORD = 'aspecificpassword' What I would like to do:-----------------------------1. I would like to schedule some down time of the system and fail it over onto node2 (where the decryption error occurs) and try to restore the SMK
here for a quick overview of the site Help Center Detailed answers to any questions you might have Meta Discuss the workings and policies of this site About Us Learn more about Stack Overflow the company Business Learn http://stackoverflow.com/questions/209927/sql-server-2005-restoring-an-encrypted-db-on-a-different-server more about hiring developers or posting ads with us Stack Overflow Questions Jobs Documentation Tags http://dbfriend.blogspot.com/2010/01/error-occurred-during-decryption-when.html Users Badges Ask Question x Dismiss Join the Stack Overflow Community Stack Overflow is a community of 6.2 million programmers, just like you, helping each other. Join them; it only takes a minute: Sign up SQL Server 2005 - Restoring an encrypted DB on a different server up vote 3 down vote favorite I have backed up an encrypted DB an error (symmetric key/certificate) and restored it on a different server. Unfortuantely we're having problems with the decryption... hoping someone can help. In the restored db, I can see the Symmetric Key and the Certificate in SSMS, but when I try to Open the key using the cert ( open symmetric key KeyA decryption by certificate CertB )I get the following very descriptive error: Msg 15466, Level 16, State 1, Line 1 An error occurred during decryption. Any an error occurred ideas? Thanks in advance. sql-server sql-server-2005 encryption symmetric-key share|improve this question edited Oct 16 '08 at 19:57 Mark Brady asked Oct 16 '08 at 19:30 user24531 17115 add a comment| 3 Answers 3 active oldest votes up vote 2 down vote http://blogs.msdn.com/lcris/archive/2007/11/16/sql-server-2005-restoring-the-backup-of-a-database-that-uses-encryption.aspx answers this: "When you restore a database that uses encryption features, there is only one thing you need to take care off - if the database master key (DbMK) needs a service master key (SMK) encryption, you need to regenerate this encryption. Note that this encryption is made by default when you create the DbMK, but it may be intentionally dropped, if you want tighter control of access to the encrypted data. Anyway, if you did have such SMK encryption for the DbMK, the steps to regenerate it are the following: OPEN MASTER KEY DECRYPTION BY PASSWORD = 'password' ALTER MASTER KEY ADD ENCRYPTION BY SERVICE MASTER KEY CLOSE MASTER KEY That's it - the database encryption features should now work as when the backup was taken. Also note that it doesn't matter if you restore the database on the server where the backup was taken or elsewhere. The only thing that matters for this procedure is that you know one of the passwords protecting the DbMK " share|improve this answer answered Oct 22 '08 at 14:30 Vendoran 1466 add a comment| up
during decryption.PN: Also, when configuring distribution for replication following error occurred.An error occurred during decryption.There is no remote user 'distributor_admin' mapped to local user '(null)' from the remote server 'repl_distributor'.Changed database context to 'master'. (Microsoft SQL Server, Error: 15466)This also due to unable to create linked server named repl_distributor.The Service Master Key is the root of the SQL Server encryption hierarchy. It is generated automatically the first time it is needed to encrypt another key. By default, the Service Master Key is encrypted using the Windows data protection API and using the local machine key. The Service Master Key can only be opened by the Windows service account under which it was created or by a principal with access to both the service account name and its password.Solution is to regenerate the service master key with following command.ALTER SERVICE MASTER KEY REGENERATEIn case above statement generates an error, you have to use with FORCE command. http://support.microsoft.com/kb/914261ALTER SERVICE MASTER KEY FORCE REGENERATE Labels: FAQ 6 comments: Josh PattersonOctober 19, 2011 at 10:00 AMThe correct syntax is:ALTER SERVICE MASTER KEY FORCE REGENERATEReplyDeleteDave OttNovember 7, 2011 at 4:42 PMJust had to do this. And Josh is correct the syntax is off.ALTER SERVICE MASTER KEY FORCE REGENERATEReplyDeleteAnonymousSeptember 30, 2013 at 10:15 AMbrillant piece of information, I had come to know about your web-page from my friend hardkik, chennai,i have read atleast 9 posts of yours by now, and let me tell you, your webpage gives the best and the most interesting information. This is just the kind of information that i had been looking for, i'm already your rss reader now and i would regularly watch out for the new posts, once again hats off to you! Thanx a million once again, Regards, obiee training in hyderebadReplyDeleteAnonymousOctober 8, 2013 at 2:24 PMThanks. this has been so helpfu