SQL Server
United States (English) Sign in
Home 2012 2008 R2 2008 Previous Versions Library Forums
TechNet Library
SQL Server
SQL Server 2008
Product Documentation
SQL Server 2008 Books Online
Database Engine
Technical Reference
Transact-SQL Reference
ALTER Statements (Transact-SQL)
ALTER APPLICATION ROLE (Transact-SQL)
ALTER ASSEMBLY (Transact-SQL)
ALTER ASYMMETRIC KEY (Transact-SQL)
ALTER AUTHORIZATION (Transact-SQL)
ALTER BROKER PRIORITY (Transact-SQL)
ALTER CERTIFICATE (Transact-SQL)
ALTER CREDENTIAL (Transact-SQL)
ALTER CRYPTOGRAPHIC PROVIDER (Transact-SQL)
ALTER DATABASE (Transact-SQL)
ALTER DATABASE AUDIT SPECIFICATION (Transact-SQL)
ALTER DATABASE ENCRYPTION KEY (Transact-SQL)
ALTER ENDPOINT (Transact-SQL)
ALTER EVENT SESSION (Transact-SQL)
ALTER FULLTEXT CATALOG (Transact-SQL)
ALTER FULLTEXT INDEX (Transact-SQL)
ALTER FULLTEXT STOPLIST (Transact-SQL)
ALTER FUNCTION (Transact-SQL)
ALTER INDEX (Transact-SQL)
ALTER LOGIN (Transact-SQL)
ALTER MASTER KEY (Transact-SQL)
ALTER MESSAGE TYPE (Transact-SQL)
ALTER PARTITION FUNCTION (Transact-SQL)
ALTER PARTITION SCHEME (Transact-SQL)
ALTER PROCEDURE (Transact-SQL)
ALTER QUEUE (Transact-SQL)
ALTER REMOTE SERVICE BINDING (Transact-SQL)
ALTER RESOURCE GOVERNOR (Transact-SQL)
ALTER RESOURCE POOL (Transact-SQL)
ALTER ROLE (Transact-SQL)
ALTER ROUTE (Transact-SQL)
ALTER SCHEMA (Transact-SQL)
ALTER SERVER AUDIT (Transact-SQL)
ALTER SERVER AUDIT SPECIFICATION (Transact-SQL)
ALTER SERVICE (Transact-SQL)
ALTER SERVICE MASTER KEY (Transact-SQL)
ALTER SYMMETRIC KEY (Transact-SQL)
ALTER TABLE (Transact-SQL)
ALTER TRIGGER (Transact-SQL)
ALTER USER (Transact-SQL)
ALTER VIEW (Transact-SQL)
ALTER WORKLOAD GROUP (Transact-SQL)
ALTER XML SCHEMA COLLECTION (Transact-SQL)
Expand Minimize
This topic has not yet been rated - Rate this topic

ALTER CRYPTOGRAPHIC PROVIDER (Transact-SQL)

Alters a cryptographic provider within SQL Server from an Extensible Key Management (EKM) provider.

Topic link iconTransact-SQL Syntax Conventions

Copy 

ALTER CRYPTOGRAPHIC PROVIDER provider_name 
    [ FROM FILE =path_of_DLL ]
    ENABLE | DISABLE
provider_name

Name of the Extensible Key Management provider.

Path_of_DLL

Path of the .dll file that implements the SQL Server Extensible Key Management interface.

ENABLE | DISABLE

Enables or disables a provider.

If the provider changes the .dll file that is used to implement Extensible Key Management in SQL Server, you must use the ALTER CRYPTOGRAPHIC PROVIDER statement.

When the .dll file path is updated by using the ALTER CRYPTOGRAPHIC PROVIDER statement, SQL Server performs the following actions:

  • Disables the provider.

  • Verifies the DLL signature and ensures that the .dll file has the same GUID as the one recorded in the catalog.

  • Updates the DLL version in the catalog.

When an EKM provider is set to DISABLE, any attempts on new connections to use the provider with encryption statements will fail.

To disable a provider, all sessions that use the provider must be terminated.

Requires CONTROL permission on the cryptographic provider.

The following example alters a cryptographic provider, called SecurityProvider in SQL Server, to a newer version of a .dll file. This new version is named c:\SecurityProvider\SecurityProvider_v2.dll and is installed on the server. The provider's certificate must be installed on the server.

Copy 
/* First, disable the provider to perform the upgrade.
This will terminate all open cryptographic sessions */
ALTER CRYPTOGRAPHIC PROVIDER SecurityProvider 
DISABLE;
GO

/* Upgrade the provider .dll file. The GUID must the same
as the previous version, but the version can be different. */
ALTER CRYPTOGRAPHIC PROVIDER SecurityProvider
FROM FILE = 'c:\SecurityProvider\SecurityProvider_v2.dll';
GO

/* Enable the upgraded provider. */
ALTER CRYPTOGRAPHIC PROVIDER SecurityProvider 
ENABLE;
GO
Did you find this helpful?
(1500 characters remaining)

Community Additions

ADD
© 2013 Microsoft
|
Site Feedback
© 2013 Microsoft. All rights reserved.