Solved

Distributing a hardened SQL Express 2014 Instance

Posted on 2014-07-29
4
401 Views
Last Modified: 2014-07-30
I have an instance of SQL Express 2014 that I have hardened using the Security Technical Implementation Guide (STIG).  Now I have to ensure that my new and existing customers well over 100 of them get a hardened installation.

Going to each machine and spending 1-2 days implementing the STIG is not a viable solution.

My question is:
Is there a way to distribute my entire instance including all db's, triggers, stored procedures, users, roles, permissions etc?
0
Comment
Question by:PSCTECH
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 35

Expert Comment

by:David Todd
ID: 40228700
Hi,

Can you a) script the hardening you have done, and b) add a backup of a template application database?

HTH
  David
0
 

Author Comment

by:PSCTECH
ID: 40229728
I can only script what I have done.  Unfortunately, there were other people who worked on this before it was given to me and they didn't save any scripts or provide any documentation of what they did.

Forgive my ignorance, but I don't understand what you mean by "add a backup of a template application database".
I'm not a DBA, this was just thrown in my lap.
0
 
LVL 35

Accepted Solution

by:
David Todd earned 500 total points
ID: 40229936
Hi,

If your application uses one user database, then most of what you want will be in that database.

As for the other things your colleagues have done - you'll have to redo them as scripts. As per another thread, this is basic development discipline. Its okay to use the gui for one-offs, and for learning, but for repeatable things, tasks need to be scripted. Actually, now the GUI can be used and before applying generate the appropriate script.

In that sense its just like coding - you don't do something, you develop code that can be compiled and produce an executable.

See if using a contained database, which I believe came out in 2008R2 or maybe 2012, can help. Some of the other things - logins for instance - are contained within the database so when it moves from server to server it doesn't have orphaned users etc.

Regards
  David
0
 

Author Closing Comment

by:PSCTECH
ID: 40230012
Thanks for the quick response and follow ups.  I appreciate your help with this matter.
0

Featured Post

Free Webinar: AWS Backup & DR

Join our upcoming webinar with experts from AWS, CloudBerry Lab, and the Town of Edgartown IT to discuss best practices for simplifying online backup management and cutting costs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction SQL Server Integration Services can read XML files, that’s known by every BI developer.  (If you didn’t, don’t worry, I’m aiming this article at newcomers as well.) But how far can you go?  When does the XML Source component become …
Why is this different from all of the other step by step guides?  Because I make a living as a DBA and not as a writer and I lived through this experience. Defining the name: When I talk to people they say different names on this subject stuff l…
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.
Viewers will learn how to use the SELECT statement in SQL to return specific rows and columns, with various degrees of sorting and limits in place.

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question