Using Separate Properties Files for Different SQL Database Instances

This section provides information on using separate properties files for different SQL database instances.

Each SQL database instance can use its own properties file, allowing you to configure parameters independently according to the requirement.

To use this with the CAKM for Microsoft SQL Server EKM Provider, navigate to the installation directory of the provider and copy the cakm_mssql_ekm.dll, and cakm_mssql_ekm.properties files to the desired location.

Now, load the cryptographic provider from this new location using the following query:

CREATE CRYPTOGRAPHIC PROVIDER <provider_name> FROM FILE ='<new_location>'

Example:

Consider you have two SQL database instances on the same machine — one running SQL Server 2016 and another running SQL Server 2019.

• On SQL Server 2016, where cakm_mssql_ekm.dll and cakm_mssql_ekm.properties files are located in the default path C:\Program Files\CipherTrust\CAKM.

To load the cryptographic provider, execute the following query:

CREATE CRYPTOGRAPHIC PROVIDER <provider_name> FROM FILE ='C:\Program Files\CipherTrust\CAKM For SQLServerEKM\cakm_mssql_ekm.dll'

• On SQL Server 2019, create a desired folder, say MSSQL2019. Copy cakm_mssql_ekm.dll and cakm_mssql_ekm.properties files from SQL Server 2016 and place them inside MSSQL2019.

Now, load the cryptographic provider from this new location using the following query:

CREATE CRYPTOGRAPHIC PROVIDER <provider_name> FROM FILE ='C:\Program Files\CipherTrust\CAKM For SQLServerEKM\MSSQL2019\cakm_mssql_ekm.dll'

Hence, both the instances are using separate properties file located in different paths.

For more information on how to configure, refer to Configuring Properties File.