CREATE MASTER KEY (Transact-SQL)

Library

MSDN Library
Servers and Enterprise Development
SQL Server
SQL Server 2008
Product Documentation
SQL Server 2008 Books Online
Database Engine
Technical Reference
Transact-SQL Reference
CREATE Statements (Transact-SQL)

CREATE AGGREGATE (Transact-SQL)
CREATE APPLICATION ROLE (Transact-SQL)
CREATE ASSEMBLY (Transact-SQL)
CREATE ASYMMETRIC KEY (Transact-SQL)
CREATE BROKER PRIORITY (Transact-SQL)
CREATE CERTIFICATE (Transact-SQL)
CREATE CONTRACT (Transact-SQL)
CREATE CREDENTIAL (Transact-SQL)
CREATE CRYPTOGRAPHIC PROVIDER (Transact-SQL)
CREATE DATABASE (Transact-SQL)
CREATE DATABASE AUDIT SPECIFICATION (Transact-SQL)
CREATE DATABASE ENCRYPTION KEY (Transact-SQL)
CREATE DEFAULT (Transact-SQL)
CREATE ENDPOINT (Transact-SQL)
CREATE EVENT NOTIFICATION (Transact-SQL)
CREATE EVENT SESSION (Transact-SQL)
CREATE FULLTEXT CATALOG (Transact-SQL)
CREATE FULLTEXT INDEX (Transact-SQL)
CREATE FULLTEXT STOPLIST (Transact-SQL)
CREATE FUNCTION (Transact-SQL)
CREATE INDEX (Transact-SQL)
CREATE LOGIN (Transact-SQL)

CREATE MASTER KEY (Transact-SQL)

CREATE MESSAGE TYPE (Transact-SQL)
CREATE PARTITION FUNCTION (Transact-SQL)
CREATE PARTITION SCHEME (Transact-SQL)
CREATE PROCEDURE (Transact-SQL)
CREATE QUEUE (Transact-SQL)
CREATE REMOTE SERVICE BINDING (Transact-SQL)
CREATE RESOURCE POOL (Transact-SQL)
CREATE ROLE (Transact-SQL)
CREATE ROUTE (Transact-SQL)
CREATE RULE (Transact-SQL)
CREATE SCHEMA (Transact-SQL)
CREATE SERVER AUDIT (Transact-SQL)
CREATE SERVER AUDIT SPECIFICATION (Transact-SQL)
CREATE SERVICE (Transact-SQL)
CREATE STATISTICS (Transact-SQL)
CREATE SYMMETRIC KEY (Transact-SQL)
CREATE SYNONYM (Transact-SQL)
CREATE TABLE (Transact-SQL)
CREATE TRIGGER (Transact-SQL)
CREATE TYPE (Transact-SQL)
CREATE USER (Transact-SQL)
CREATE VIEW (Transact-SQL)
CREATE WORKLOAD GROUP (Transact-SQL)
CREATE XML SCHEMA COLLECTION (Transact-SQL)

Related Links

Errors and Events Reference
Feature Reference
Tools Reference
Transact-SQL Reference
XQuery Language Reference
Exception Message Box Class Library
SQL Server Management Objects (SMO) Class Library
SQL Server Data Collector Class Library
WMI Provider for Configuration Management Classes
SQL-DMO Reference

CREATE MASTER KEY (Transact-SQL)
SQL Server 2005

SQL Server 2008 Books Online (October 2009)

CREATE MASTER KEY (Transact-SQL)

Creates a database master key.

Topic link icon Transact-SQL Syntax Conventions

Syntax

CREATE MASTER KEY ENCRYPTION BY PASSWORD = 'password'

Arguments

PASSWORD = 'password': Is the password that is used to encrypt the master key in the database. password must meet the Windows password policy requirements of the computer that is running the instance of SQL Server.

Remarks

The database master key is a symmetric key used to protect the private keys of certificates and asymmetric keys that are present in the database. When it is created, the master key is encrypted by using the Triple DES algorithm and a user-supplied password. To enable the automatic decryption of the master key, a copy of the key is encrypted by using the service master key and stored in both the database and in master. Typically, the copy stored in master is silently updated whenever the master key is changed. This default can be changed by using the DROP ENCRYPTION BY SERVICE MASTER KEY option of ALTER MASTER KEY. A master key that is not encrypted by the service master key must be opened by using the OPEN MASTER KEY statement and a password.

The is_master_key_encrypted_by_server column of the sys.databases catalog view in master indicates whether the database master key is encrypted by the service master key.

Information about the database master key is visible in the sys.symmetric_keys catalog view.

Important:
You should back up the master key by using BACKUP MASTER KEY and store the backup in a secure, off-site location.

Permissions

Requires CONTROL permission on the database.

Examples

The following example creates a database master key for the AdventureWorks database. The key is encrypted using the password 23987hxJ#KL95234nl0zBe.

USE AdventureWorks;
CREATE MASTER KEY ENCRYPTION BY PASSWORD = '23987hxJ#KL95234nl0zBe';
GO

See Also

Reference

sys.symmetric_keys (Transact-SQL)
sys.databases (Transact-SQL)
OPEN MASTER KEY (Transact-SQL)
ALTER MASTER KEY (Transact-SQL)
DROP MASTER KEY (Transact-SQL)
CLOSE MASTER KEY (Transact-SQL)

Other Resources

Encryption Hierarchy

Help and Information

Getting SQL Server 2008 Assistance

© 2009 Microsoft Corporation. All rights reserved. Terms of Use | Trademarks | Privacy Statement

Rate the Lightweight library

x

Lightweight builds on ScriptFree (loband) by adding features you've requested: a SearchBox and default code language selection.

Do you like the SearchBox?

Yes

No

Do you like the tabbed code blocks?

Yes

No

How useful is this topic?

Tell us more.

Thanks

x

You're helping to improve MSDN Online.

Switch View

Lightweight Beta