Solved

Distributing a hardened SQL Express 2014 Instance

Posted on 2014-07-29
4
443 Views
Last Modified: 2014-07-30
I have an instance of SQL Express 2014 that I have hardened using the Security Technical Implementation Guide (STIG).  Now I have to ensure that my new and existing customers well over 100 of them get a hardened installation.

Going to each machine and spending 1-2 days implementing the STIG is not a viable solution.

My question is:
Is there a way to distribute my entire instance including all db's, triggers, stored procedures, users, roles, permissions etc?
0
Comment
Question by:PSCTECH
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 35

Expert Comment

by:David Todd
ID: 40228700
Hi,

Can you a) script the hardening you have done, and b) add a backup of a template application database?

HTH
  David
0
 

Author Comment

by:PSCTECH
ID: 40229728
I can only script what I have done.  Unfortunately, there were other people who worked on this before it was given to me and they didn't save any scripts or provide any documentation of what they did.

Forgive my ignorance, but I don't understand what you mean by "add a backup of a template application database".
I'm not a DBA, this was just thrown in my lap.
0
 
LVL 35

Accepted Solution

by:
David Todd earned 500 total points
ID: 40229936
Hi,

If your application uses one user database, then most of what you want will be in that database.

As for the other things your colleagues have done - you'll have to redo them as scripts. As per another thread, this is basic development discipline. Its okay to use the gui for one-offs, and for learning, but for repeatable things, tasks need to be scripted. Actually, now the GUI can be used and before applying generate the appropriate script.

In that sense its just like coding - you don't do something, you develop code that can be compiled and produce an executable.

See if using a contained database, which I believe came out in 2008R2 or maybe 2012, can help. Some of the other things - logins for instance - are contained within the database so when it moves from server to server it doesn't have orphaned users etc.

Regards
  David
0
 

Author Closing Comment

by:PSCTECH
ID: 40230012
Thanks for the quick response and follow ups.  I appreciate your help with this matter.
0

Featured Post

On Demand Webinar - Networking for the Cloud Era

This webinar discusses:
-Common barriers companies experience when moving to the cloud
-How SD-WAN changes the way we look at networks
-Best practices customers should employ moving forward with cloud migration
-What happens behind the scenes of SteelConnect’s one-click button

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In the first part of this tutorial we will cover the prerequisites for installing SQL Server vNext on Linux.
What if you have to shut down the entire Citrix infrastructure for hardware maintenance, software upgrades or "the unknown"? I developed this plan for "the unknown" and hope that it helps you as well. This article explains how to properly shut down …
Viewers will learn how to use the INSERT statement to insert data into their tables. It will also introduce the NULL statement, to show them what happens when no value is giving for any given column.
Viewers will learn how to use the SELECT statement in SQL and will be exposed to the many uses the SELECT statement has.

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question