Presentation is loading. Please wait.

Presentation is loading. Please wait.

Securing SQL Server Processes with Certificates

Published byWesley Thornton Modified over 6 years ago

Similar presentations

Presentation on theme: "Securing SQL Server Processes with Certificates"— Presentation transcript:

1 Securing SQL Server Processes with Certificates
Welcome to 24 Hours of PASS: Data Security and Data Quality. We’re excited you could join us today for Robert Davis’s session, Securing SQL Server Processes with Certificates. This 24 Hours of PASS event consists of 24 consecutive live webinars, delivered by expert speakers from the PASS community. The sessions will be recorded and posted online after the event. To access any on-demand sessions, please visit for all session links. My name is Ivan Sanders [you can say a bit about yourself here if you’d like] I have a few introductory slides before I hand over the reins to Robert. [move to next slide] Robert, Davis, Database Engineer, BlueMountain Capital Management Moderated By: Ivan Sanders

2 If you require technical assistance please type your question into the question pane located on the right side of your screen and someone will assist you. This question pane is also where you may ask any questions throughout the presentation. Feel free to enter your questions at any time and once we get to the Q&A portion of the session, I’ll read your questions aloud to the speaker. You are able to zoom in on the presentation content by using the zoom button located on the top of the presentation window. Please note that there will be a short evaluation at the end of the session. Your feedback is important to us so please take a moment to complete it. It will appear in your web browser. [Note to moderators: You need to determine which questions are the most relevant and ask them out loud to the presenter].

3 Empower users with new insights through familiar tools while balancing the need for IT to monitor and manage user created content. Deliver access to all data types across structured and unstructured sources. Redgate Software makes ingeniously simple software used by 650,000 IT professionals who work with SQL Server, .NET, and Oracle. More than 100,000 companies use Redgate products, including 91% of the Fortune Redgate’s philosophy is to design highly usable, reliable tools which elegantly solve the problems that developers and DBAs face every day. I’d like to take a moment to thank our presenting sponsors, Microsoft and Redgate. The staging of 24 Hours of PASS would not be possible without their generous support, and they are the reason this event is available free of charge. [move to next slide]

4 Make sure you explore everything else PASS has on offer for data professionals! You can join local user groups around the world, special interest groups, find free online resources through our learning center and read up on the latest community news in the Connector Newsletter. [move to next slide]

5 Robert L Davis MCM/MCSM, MVP, DBA Blogger, writer
SQL Server Certified Master, Data Platform MVP, and experienced DBA, evangelist, speaker, writer, and trainer. Currently works as a Database Engineer at BlueMountain Capital Management. Blogger, writer Check out my blog at where I also have links to the many whitepapers I have written as well as articles for SQL Server Pro magazine. facebook.com/robert.l.davis.75 [Moderator Slide] This 24 Hours of PASS session is presented by Robert Davis. Robert is a SQL Server Certified Master, MVP, and experienced DBA, evangelist, speaker, writer, and trainer. He has worked with SQL Server for 17+ years. Robert is co-founder and co-leader of the PASS Security Virtual Chapter. [move to next slide,] twitter.com/SQLSoldier PASS Security Virtual Chapter Co-founder and co-leader of the PASS Security Virtual Chapter. If interested in speaking or volunteering for the Security VC, contact us at linkedin.com/in/robertldavis/

6 Securing SQL Server Processes with Certificates
And without further ado, here is Robert with Securing SQL Server Processes with Certificates. {speaker begins} Robert, Davis, Database Engineer, BlueMountain Capital Management

7 Robert L Davis MCM/MCSM, MVP, DBA Blogger, writer
SQL Server Certified Master, Data Platform MVP, and experienced DBA, evangelist, speaker, writer, and trainer. Currently works as a Database Engineer at BlueMountain Capital Management. Blogger, writer Check out my blog at where I also have links to the many whitepapers I have written as well as articles for SQL Server Pro magazine. facebook.com/robert.l.davis.75 twitter.com/SQLSoldier PASS Security Virtual Chapter Co-founder and co-leader of the PASS Security Virtual Chapter. If interested in speaking or volunteering for the Security VC, contact us at linkedin.com/in/robertldavis/

8 Securing SQL Server Processes with Certificates
Managing Certificates

9 Securing SQL Server Processes with Certificates
Managing Certificates Creating Logins and Users Mapped to Certificates

10 Securing SQL Server Processes with Certificates
Managing Certificates Creating Logins and Users Mapped to Certificates Signing Procedures

11 Securing SQL Server Processes with Certificates
Managing Certificates Creating Logins and Users Mapped to Certificates Signing Procedures Signing Procedures for SQL Server Processes

12 Securing SQL Server Processes with Certificates
Managing Certificates Creating certificates

13 Securing SQL Server Processes with Certificates
Managing Certificates Creating certificates CREATE CERTIFICATE

14 Securing SQL Server Processes with Certificates
Managing Certificates Creating certificates CREATE CERTIFICATE Backing up certificates

15 Securing SQL Server Processes with Certificates
Managing Certificates Creating certificates CREATE CERTIFICATE Backing up certificates BACKUP CERTIFICATE

16 Securing SQL Server Processes with Certificates
Managing Certificates Creating certificates CREATE CERTIFICATE Backing up certificates BACKUP CERTIFICATE Restoring certificates

17 Securing SQL Server Processes with Certificates
Managing Certificates Creating certificates CREATE CERTIFICATE Backing up certificates BACKUP CERTIFICATE Restoring certificates

18 Securing SQL Server Processes with Certificates
Managing Certificates Creating certificates CREATE CERTIFICATE Backing up certificates BACKUP CERTIFICATE Restoring certificates CREATE CERTIFICATE … FROM FILE

19 Securing SQL Server Processes with Certificates
Managing Certificates Creating certificates CREATE CERTIFICATE Backing up certificates BACKUP CERTIFICATE Restoring certificates CREATE CERTIFICATE … FROM FILE Store securely

20 Securing SQL Server Processes with Certificates
Managing Certificates Creating certificates CREATE CERTIFICATE Backing up certificates BACKUP CERTIFICATE Restoring certificates CREATE CERTIFICATE … FROM FILE Store securely Demo

21 Securing SQL Server Processes with Certificates
Creating Logins and Users Mapped to Certificates Creating logins

22 Securing SQL Server Processes with Certificates
Creating Logins and Users Mapped to Certificates Creating logins CREATE LOGIN … FROM CERTIFICATE

23 Securing SQL Server Processes with Certificates
Creating Logins and Users Mapped to Certificates Creating logins CREATE LOGIN … FROM CERTIFICATE Creating users

24 Securing SQL Server Processes with Certificates
Creating Logins and Users Mapped to Certificates Creating logins CREATE LOGIN … FROM CERTIFICATE Creating users CREATE USER … FOR/FROM CERTIFICATE

25 Securing SQL Server Processes with Certificates
Creating Logins and Users Mapped to Certificates Creating logins CREATE LOGIN … FROM CERTIFICATE Creating users CREATE USER … FOR/FROM CERTIFICATE Demo

26 Securing SQL Server Processes with Certificates
Signing Stored Procedures Grant permissions for a stored procedure without granting to user

27 Securing SQL Server Processes with Certificates
Signing Stored Procedures Grant permissions for a stored procedure without granting to user Allows you to avoid common issues where you may otherwise be pressured to enable risky database options

28 Securing SQL Server Processes with Certificates
Signing Stored Procedures Grant permissions for a stored procedure without granting to user Allows you to avoid common issues where you may otherwise be pressured to enable risky database options Cross-database ownership chaining

29 Securing SQL Server Processes with Certificates
Signing Stored Procedures Grant permissions for a stored procedure without granting to user Allows you to avoid common issues where you may otherwise be pressured to enable risky database options Cross-database ownership chaining Trustworthy

30 Securing SQL Server Processes with Certificates
Signing Stored Procedures Grant permissions for a stored procedure without granting to user Allows you to avoid common issues where you may otherwise be pressured to enable risky database options Cross-database ownership chaining Trustworthy Signing the procedures

31 Securing SQL Server Processes with Certificates
Signing Stored Procedures Grant permissions for a stored procedure without granting to user Allows you to avoid common issues where you may otherwise be pressured to enable risky database options Cross-database ownership chaining Trustworthy Signing the procedures ADD SIGNATURE TO … BY CERTIFICATE … WITH PASSWORD

32 Securing SQL Server Processes with Certificates
Signing Stored Procedures Grant permissions for a stored procedure without granting to user Allows you to avoid common issues where you may otherwise be pressured to enable risky database options Cross-database ownership chaining Trustworthy Signing the procedures ADD SIGNATURE TO … BY CERTIFICATE … WITH PASSWORD Executes as certificate which is mapped to a user and/or login

33 Securing SQL Server Processes with Certificates
Signing Stored Procedures Grant permissions for a stored procedure without granting to user Allows you to avoid common issues where you may otherwise be pressured to enable risky database options Cross-database ownership chaining Trustworthy Signing the procedures ADD SIGNATURE TO … BY CERTIFICATE … WITH PASSWORD Executes as certificate which is mapped to a user and/or login Demo

34 Securing SQL Server Processes with Certificates
Signing Stored Procedures for SQL Server Processes Relies on everything we’ve learned so far

35 Securing SQL Server Processes with Certificates
Signing Stored Procedures for SQL Server Processes Relies on everything we’ve learned so far Can be used to execute signed procedure via Service Broker

36 Securing SQL Server Processes with Certificates
Signing Stored Procedures for SQL Server Processes Relies on everything we’ve learned so far Can be used to execute signed procedure via Service Broker Can be used to grant rights to CLR assemblies

37 Securing SQL Server Processes with Certificates
Signing Stored Procedures for SQL Server Processes Relies on everything we’ve learned so far Can be used to execute signed procedure via Service Broker Can be used to grant rights to CLR assemblies More work but more secure

38

39 Protecting Data Across the Environment
Make sure to stay tuned for our next session, Protecting Data Across the Environment with Brian Kelley. [move to next slide] Brian Kelley

40

41

Download ppt "Securing SQL Server Processes with Certificates"

Similar presentations

Digital Certificate Installation & User Guide For Class-2 Certificates.

Digital Certificate Installation & User Guide For Class-2 Certificates.
Passage Three MCDBA on Microsoft SQL Server 2000 Certification.

Passage Three MCDBA on Microsoft SQL Server 2000 Certification.
Walter Pitrof Technology Solution Professional Microsoft Switzerland Backup, Restore und Disaster Recovery mit Data Protection Manager 2012 Philipp Witschi.

Walter Pitrof Technology Solution Professional Microsoft Switzerland Backup, Restore und Disaster Recovery mit Data Protection Manager 2012 Philipp Witschi.
Digital Certificate Installation & User Guide For Class - 2 Certificates.

Digital Certificate Installation & User Guide For Class - 2 Certificates.
Introduction to PDE Webinars July 2007. Prepare for Your First Webinar Note: You may need help from technical support and/or your network guru. 1. Connect.

Introduction to PDE Webinars July Prepare for Your First Webinar Note: You may need help from technical support and/or your network guru. 1. Connect.
Quick Reference Guide Welcome TEST USER Version_NSU_101111 HELP RETIREMENT MANAGER DEMO FEEDBACK.

Quick Reference Guide Welcome TEST USER Version_NSU_ HELP RETIREMENT MANAGER DEMO FEEDBACK.
Using Excel, Excel Service and PerformancePoint

Using Excel, Excel Service and PerformancePoint
EventsMastery – HOW TO MANAGE CORPORATE EVENTS SUCCESSFUL (HTMCES) eMentorship Portal (eMP) “HOW TO USE PORTAL GUIDE” Managed by.

EventsMastery – HOW TO MANAGE CORPORATE EVENTS SUCCESSFUL (HTMCES) eMentorship Portal (eMP) “HOW TO USE PORTAL GUIDE” Managed by.
© IGD 2011 For subscribers who usually log in via a company intranet link.

© IGD 2011 For subscribers who usually log in via a company intranet link.
Yahoo Help Phone Number 1-844-666-2840. Get Instant Help.

Yahoo Help Phone Number Get Instant Help.
October 15-18, 2013 Charlotte, NC Being the DBA of the Future A World of On-Premises and Cloud Dandy Weyn, Snr. Technical Marketing Product Manager Microsoft.

October 15-18, 2013 Charlotte, NC Being the DBA of the Future A World of On-Premises and Cloud Dandy Weyn, Snr. Technical Marketing Product Manager Microsoft.
Email Account & Google Message Center Guide August 2015 Prepared by: Angela Mars IT Education and Training.

Account & Google Message Center Guide August 2015 Prepared by: Angela Mars IT Education and Training.
Putting Your Head in the Cloud Working with SQL Azure David Postlethwaite 19/09/2015David Postlethwaite.

Putting Your Head in the Cloud Working with SQL Azure David Postlethwaite 19/09/2015David Postlethwaite.
Filing the 2016 FCC Form 499-A March 10, 2016 Using E-File to Access FCC Form 499-A.

Filing the 2016 FCC Form 499-A March 10, 2016 Using E-File to Access FCC Form 499-A.
With Weebly.com. What hoop do I have to jump through to create my own site? Is it expensive? Is it time consuming? Do I have to be tech savvy? Will it.

With Weebly.com. What hoop do I have to jump through to create my own site? Is it expensive? Is it time consuming? Do I have to be tech savvy? Will it.
Using abstract data layers in Microsoft SQL Server Speaker:Uwe Ricken (db Berater GmbH)

Using abstract data layers in Microsoft SQL Server Speaker:Uwe Ricken (db Berater GmbH)
Windows 10 Tech Support Call On 1-800-251-4919. Windows 10 the latest product updates from Microsoft providing a lots of easy facilities to the It professionals.

Windows 10 Tech Support Call On Windows 10 the latest product updates from Microsoft providing a lots of easy facilities to the It professionals.
Integrating SharePoint with Microsoft Dynamics CRM CRM3007

Integrating SharePoint with Microsoft Dynamics CRM CRM3007
Email Account & Google Message Center Guide August 2015 Prepared by: Angela Mars IT Education and Training.

Account & Google Message Center Guide August 2015 Prepared by: Angela Mars IT Education and Training.
Installation The Intercompany Integration Solution for SAP Business One Version 2.0 for SAP Business One 9.1 Welcome to the course on the installation.

Installation The Intercompany Integration Solution for SAP Business One Version 2.0 for SAP Business One 9.1 Welcome to the course on the installation.

Similar presentations

Ads by Google