MicrosoftDocs
Manage the encryption certificate on SQL Server upgrade 2.a
Please provide steps or link on how to move existing certificate. I do not see 'move' or 'renamed' in ALTER CERTIFICATE documentation.
Document Details
⚠ Do not edit this section. It is required for learn.microsoft.com ➟ GitHub issue linking.
- ID: 15f70f31-c5d5-562a-d3af-8c52bc20c89a
- Version Independent ID: cf459805-6802-eb92-fc89-14c487c9915a
- Content: Encrypt recovery data in the database - Configuration Manager
- Content Source: memdocs/configmgr/protect/deploy-use/bitlocker/encrypt-recovery-data.md
- Product: configuration-manager
- Technology: configmgr-protect
- GitHub Login: @BalaDelli
- Microsoft Alias: baladell
Hi Eric,
For moving the existing certificate you can backup and restore.
you need to backup the certificate to a file, then restore the certificate and choose a different certificate name during restoration.
Example:
CREATE CERTIFICATE BitLockerManagement_CERT_OLD AUTHORIZATION RecoveryAndHardwareCore FROM FILE = 'C:\BitLockerManagement_CERT' WITH PRIVATE KEY ( FILE = 'C:\BitLockerManagement_CERT_KEY', DECRYPTION BY PASSWORD = 'MyExportKeyPassword')
GRANT CONTROL ON CERTIFICATE ::BitLockerManagement_CERT_OLD TO RecoveryAndHardwareRead GRANT CONTROL ON CERTIFICATE ::BitLockerManagement_CERT_OLD TO RecoveryAndHardwareWrite
Regards
Balasubramanian Delli (Bala) Prin Product Manager #bettertogether
From: Eric Nelson @.> Sent: Thursday, October 13, 2022 10:41 PM To: MicrosoftDocs/memdocs @.> Cc: Balasubramanian Delli @.>; Mention @.> Subject: [MicrosoftDocs/memdocs] Manage the encryption certificate on SQL Server upgrade 2.a (Issue #3244)
Please provide steps or link on how to move existing certificate. I do not see 'move' or 'renamed' in ALTER CERTIFICATE documentation.
Document Details
⚠ Do not edit this section. It is required for learn.microsoft.com ➟ GitHub issue linking.
- ID: 15f70f31-c5d5-562a-d3af-8c52bc20c89a
- Version Independent ID: cf459805-6802-eb92-fc89-14c487c9915a
- Content: Encrypt recovery data in the database - Configuration Managerhttps://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Flearn.microsoft.com%2Fen-us%2Fmem%2Fconfigmgr%2Fprotect%2Fdeploy-use%2Fbitlocker%2Fencrypt-recovery-data%23manage-the-encryption-certificate-on-sql-server-upgrade&data=05%7C01%7Cbaladell%40microsoft.com%7Cca0bbb8fd37545526fc008daad3ddac0%7C72f988bf86f141af91ab2d7cd011db47%7C0%7C0%7C638012778455148374%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=UxF14OOu12XVd3EfxnWNvGmJNYJKUe1HvK7wiaxxyfE%3D&reserved=0
- Content Source: memdocs/configmgr/protect/deploy-use/bitlocker/encrypt-recovery-data.mdhttps://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2FMicrosoftDocs%2Fmemdocs%2Fblob%2Fmain%2Fmemdocs%2Fconfigmgr%2Fprotect%2Fdeploy-use%2Fbitlocker%2Fencrypt-recovery-data.md&data=05%7C01%7Cbaladell%40microsoft.com%7Cca0bbb8fd37545526fc008daad3ddac0%7C72f988bf86f141af91ab2d7cd011db47%7C0%7C0%7C638012778455148374%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=P7fJkXQmzM3h2PPkIzcOGI8Ws1CzP9gAd4YVu%2FFeA3E%3D&reserved=0
- Product: configuration-manager
- Technology: configmgr-protect
- GitHub Login: @BalaDellihttps://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2FBalaDelli&data=05%7C01%7Cbaladell%40microsoft.com%7Cca0bbb8fd37545526fc008daad3ddac0%7C72f988bf86f141af91ab2d7cd011db47%7C0%7C0%7C638012778455148374%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=5%2F5W6QuWl8vjwgTQ284G55Kf5yJ9iMeEVSCxo5r%2Be1Y%3D&reserved=0
- Microsoft Alias: baladell
— Reply to this email directly, view it on GitHubhttps://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2FMicrosoftDocs%2Fmemdocs%2Fissues%2F3244&data=05%7C01%7Cbaladell%40microsoft.com%7Cca0bbb8fd37545526fc008daad3ddac0%7C72f988bf86f141af91ab2d7cd011db47%7C0%7C0%7C638012778455148374%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=YXXyQ7KWtTkhR%2FV%2FcdhXM3TEefvVZVV09G6gtXY4l%2Fw%3D&reserved=0, or unsubscribehttps://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fnotifications%2Funsubscribe-auth%2FATTDMJQW66JSFAS45CF2XMLWDA7A7ANCNFSM6AAAAAAREPP4GE&data=05%7C01%7Cbaladell%40microsoft.com%7Cca0bbb8fd37545526fc008daad3ddac0%7C72f988bf86f141af91ab2d7cd011db47%7C0%7C0%7C638012778455148374%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=IqUJCPNbkBMOT0bWdI5dRJN2%2BViv6TIXQhYYy9cLC50%3D&reserved=0. You are receiving this because you were mentioned.Message ID: @.@.>>
