Solved

Distributing a hardened SQL Express 2014 Instance

Posted on 2014-07-29
4
360 Views
Last Modified: 2014-07-30
I have an instance of SQL Express 2014 that I have hardened using the Security Technical Implementation Guide (STIG).  Now I have to ensure that my new and existing customers well over 100 of them get a hardened installation.

Going to each machine and spending 1-2 days implementing the STIG is not a viable solution.

My question is:
Is there a way to distribute my entire instance including all db's, triggers, stored procedures, users, roles, permissions etc?
0
Comment
Question by:PSCTECH
  • 2
  • 2
4 Comments
 
LVL 35

Expert Comment

by:David Todd
Comment Utility
Hi,

Can you a) script the hardening you have done, and b) add a backup of a template application database?

HTH
  David
0
 

Author Comment

by:PSCTECH
Comment Utility
I can only script what I have done.  Unfortunately, there were other people who worked on this before it was given to me and they didn't save any scripts or provide any documentation of what they did.

Forgive my ignorance, but I don't understand what you mean by "add a backup of a template application database".
I'm not a DBA, this was just thrown in my lap.
0
 
LVL 35

Accepted Solution

by:
David Todd earned 500 total points
Comment Utility
Hi,

If your application uses one user database, then most of what you want will be in that database.

As for the other things your colleagues have done - you'll have to redo them as scripts. As per another thread, this is basic development discipline. Its okay to use the gui for one-offs, and for learning, but for repeatable things, tasks need to be scripted. Actually, now the GUI can be used and before applying generate the appropriate script.

In that sense its just like coding - you don't do something, you develop code that can be compiled and produce an executable.

See if using a contained database, which I believe came out in 2008R2 or maybe 2012, can help. Some of the other things - logins for instance - are contained within the database so when it moves from server to server it doesn't have orphaned users etc.

Regards
  David
0
 

Author Closing Comment

by:PSCTECH
Comment Utility
Thanks for the quick response and follow ups.  I appreciate your help with this matter.
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Select2 jquery help 9 41
sql query 7 34
SQL Script to find duplicates 16 18
Copy Database Wizard Error 3 19
Having an SQL database can be a big investment for a small company. Hardware, setup and of course, the price of software all add up to a big bill that some companies may not be able to absorb.  Luckily, there is a free version SQL Express, but does …
This article explains how to reset the password of the sa account on a Microsoft SQL Server.  The steps in this article work in SQL 2005, 2008, 2008 R2, 2012, 2014 and 2016.
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.
Via a live example, show how to shrink a transaction log file down to a reasonable size.

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now