sys.certificates (Transact-SQL)


THIS TOPIC APPLIES TO: yesSQL Server (starting with 2008)yesAzure SQL DatabaseyesAzure SQL Data Warehouse yesParallel Data Warehouse

Returns a row for each certificate in the database.

Column nameData typeDescription
namesysnameName of the certificate. Is unique within the database.
certificate_idintID of the certificate. Is unique within the database.
principal_idintID of the database principal that owns this certificate.
pvt_key_encryption_typechar(2)How the private key is encrypted.

NA = There is no private key for the certificate

MK = Private key is encrypted by the master key

PW = Private key is encrypted by a user-defined password

SK = Private key is encrypted by the service master key.
pvt_key_encryption_type_descnvarchar(60)Description of how the private key is encrypted.




is_active_for_begin_dialogbitIf 1, this certificate is used to initiate encrypted service dialogs.
issuer_namenvarchar(442)Name of certificate issuer.
cert_serial_numbernvarchar(64)Serial number of certificate.
sidvarbinary(85)Login SID for this certificate.
string_sidnvarchar(128)String representation of the login SID for this certificate
subjectnvarchar(4000)Subject of this certificate.
expiry_datedatetimeWhen certificate expires.
start_datedatetimeWhen certificate becomes valid.
thumbprintvarbinary(32)SHA-1 hash of the certificate. The SHA-1 hash is globally unique.
attested_bynvarchar(260)System use only.
pvt_key_last_backup_datedatetimeThe date and time the certificate’s private key was last exported.

The visibility of the metadata in catalog views is limited to securables that a user either owns or on which the user has been granted some permission. For more information, see Metadata Visibility Configuration.

Security Catalog Views (Transact-SQL)
Catalog Views (Transact-SQL)
Encryption Hierarchy

Community Additions