关于三节点mssql-cluster证书失败
1.
select * from master.sys.certificates
DROP CERTIFICATE 证书名称
2.
select * from master.sys.database_mirroring_endpoints
DROP ENDPOINT 镜像端点名称
3
--已经创建可主key以不用再次创建
--CREATE MASTER KEY ENCRYPTION BY PASSWORD = '****';
4
--这次记得设置过期时间,没有默认一年
CREATE CERTIFICATE dbm_certificate WITH SUBJECT = 'dbm',EXPIRY_DATE
= '05/28/2099';
--备份证书文件前,手动删除这两个文件
BACKUP CERTIFICATE dbm_certificate
TO FILE =
'/var/opt/mssql/data/dbm_certificate.cer'
WITH PRIVATE KEY (
FILE = '/var/opt/mssql/data/dbm_certificate.pvk',
ENCRYPTION BY PASSWORD = '****'
);
CREATE ENDPOINT [Hadr_endpoint]
STATE=STARTED
AS TCP (LISTENER_PORT = 5022, LISTENER_IP =
(0.0.0.0))
FOR DATA_MIRRORING (
ROLE = ALL,
AUTHENTICATION = CERTIFICATE
[dbm_certificate],
ENCRYPTION = REQUIRED ALGORITHM AES)
GO
5.
--拷贝两个文件到 其他伙伴服务器相应的目录
6
--已经创建可主key以不用再次创建
--CREATE MASTER KEY ENCRYPTION BY PASSWORD = '****';
7
CREATE CERTIFICATE dbm_certificate
FROM FILE =
'/var/opt/mssql/data/dbm_certificate.cer'
WITH PRIVATE
KEY (
FILE =
'/var/opt/mssql/data/dbm_certificate.pvk',
DECRYPTION
BY PASSWORD = '****'
);
CREATE ENDPOINT [Hadr_endpoint]
STATE=STARTED
AS TCP (LISTENER_PORT = 5022, LISTENER_IP =
(0.0.0.0))
FOR DATA_MIRRORING (
ROLE = ALL,
AUTHENTICATION = CERTIFICATE
[dbm_certificate],
ENCRYPTION = REQUIRED ALGORITHM AES)
GO
挨个重启服务器