Professional Documents
Culture Documents
Contents
Part 1: Overview
Prerequisites
For this exercise, you will need:
Access to the training platform
Duration
This training course will take approximately 2.0 hours.
Objectives
In this exercise, you will:
Install and configure CipherTrust Database Protection (CDP)
Encrypt database
.
In part one you will create a new MSSQL database, as well as prepare the tables and the users that will be
used in the encryption process.
User sa
Password Thales123!
10. Type the name demo_meta, for the new database and then click OK.
11. Right-click Security, select New Login, and then configure the following:
User Must change password at next login Clear this check box
[S.No] nvarchar(50)
Email nvarchar(50
SSN nvarchar(50)
5. In the window that opens, type the table name: customer and click OK (the table is saved with the
name customer).
6. Right-click the customer table and select Edit top 200 Rows to add some test data to this table.
8. Right-click your customer table under the demo database, and then select Select top 1000 rows – this
will allow you to see your data.
In part three, you will install the CDP Client on the MSSQL Server.
8. Click Next.
The Select Database window opens.
In part four, you will learn how to configure the CipherTrust connection to the database using the CM Web
UI as well as the CLI Tool.
User admin
Password Thales123!
3. On the left pane, select the Databases tab, and then in the right pane, click +Database > SQLServer.
5. Click Save.
When the configuration is complete, the status changes to Success.
Password dbThales123!
9. Under Group add the PretectDB Users group and select all the permissions options.
10. check the All box.
Database User sa
3. Go back to the CDP tile, click the 3 dots on the right, and then select Manage Tables.
5. Click Save.
The list of columns from the database appear.
6. Click SSN.
Algorithm AES-256
Key db_key
The pdbctl tool is an external tool that needs to be used to encrypt the data in the database.
For additional information regarding the pdbctl tool, refer to the User Guide included in the tool package.
6. Click OK.
7. Click New under System Variables.
8. Enter the following:
9. Click OK.
Port 1433
2. To view the newly added database, or to check if the database was added successfully or not, run the
following command: pdbctl listdb
3. List User Map. This allows us to see which users are mapped on the database and the CM:
pdbctl listusermap –a mssqldemo
4. To view the tables in a database associated with a database alias, run the following command:
pdbctl listtables -a <database_user_alias>
5. To view the columns in a table associated with a database alias, run the following command:
pdbctl listcolumns -a <database_user_alias> -t <column>.
The following sample command lists the tables associated with the alias, test:
pdbctl listcolumns -a mssqldemo -t customer
6. Run the following command for migrating data into encrypted format :
pdbctl migrate -a <database_alias> -t <table_name>
pdbctl migrate -a mssqldemo -t customer
User sa
Password Thales123!
Note: The pdbtool creates a new column with the encrypted data.