Previous Topic: Define SQL Server Always Encrypted KeysNext Topic: SQL Server Audit Specifications

Creating ModelsTarget Servers for Physical ModelsDatabase Property EditorsSQL Server Property EditorsSQL Server Property EditorsDefine an Asymmetric Key in SQL Server

Define an Asymmetric Key in SQL Server

Use the SQL Server Asymmetric Key Editor to define security keys at the database level in a SQL Server 2008 or 2012 physical model.

To define an asymmetric key in SQL Server

  1. On the Model menu, click Target - SQL Server, Security, Asymmetric Keys.

    The SQL Server Asymmetric Key Editor opens.

  2. Select the asymmetric key in the Navigation Grid that you want to define and work with the following options:

    Note: Click New New icon in property editors to create a new object on the toolbar to create a new asymmetric key. Use the Enter filter text box to filter a very large list of asymmetric keys to quickly locate the one that you want to define.

    Name

    Displays the asymmetric key name. You can change the asymmetric key name in this field.

    Database

    Specifies the database in which the asymmetric key resides.

    Authorization

    Specifies the owner of the asymmetric key. Select a name from the drop-down list.

    Generate

    Generates SQL during forward engineering. Clear the check box if you do not want to generate SQL.

  3. Click the General tab and select one of the following password options for the asymmetric key:
    Algorithm

    Specifies to use an encoding algorithm for the asymmetric key. Select the encoding algorithm to use from the drop-down list.

    Key Source Type

    Specifies the source of the asymmetric key. Select one of the following options:

    File

    Specifies to use a file as the key source. A File field appears under the Key Source Type field, where you select the file to use to encrypt the asymmetric key from the drop-down list.

    Note: Click New New icon in property editors to create a new object to open the SQL Server File Editor to create a new key file.

    Executable

    Specifies to use an executable as the key source. A File field appears under the Key Source Type field, where you select the file to use from the drop-down list.

    Note: Click New New icon in property editors to create a new object to open the SQL Server File Editor to create a new executable file.

    Assembly

    Specifies to use a SQL Server assembly file as the key source. An Assembly field appears under the Key Source Type field, where you select the assembly to use to encrypt the asymmetric key from the drop-down list.

    Note: Click New New icon in property editors to create a new object to open the SQL Server Assembly Editor to create a new assembly.

    Cryptographic Provider

    Specifies to use a cryptographic provider as the key source. Additional fields appear under the Key Source Type field for you to further define the cryptographic provider: Cryptographic Provider, where you select the cryptographic provider to use to encrypt the asymmetric key; Provider Key Name, where you enter the name of the key on the extensible key device; and Disposition, where you select how to handle the key on the extensible key device.

    Note: Click New New icon in property editors to create a new object to open the SQL Server Cryptographic Provider Editor to create a new cryptographic provider.

  4. Click the Permission tab to define the permissions for the asymmetric key.
  5. (Optional) Click the Comment tab and enter any comments that you want to associate with the object.
  6. (Optional) Click the Where Used tab to view where the object is used within the model.
  7. (Optional) Click the UDP tab to work with user-defined properties for the object.
  8. (Optional) Click the Notes tab to view and edit user notes.
  9. (Optional) Click the Extended Notes tab to view or edit user notes.
  10. Click Close.

    The asymmetric key is defined and the SQL Server Asymmetric Key Editor closes.