Learn your way! Get started

SQL 2014 Admin, Part 3 of 5: Security and Resource Mgmt

with expert Chris Bell

Watch trailer

Course at a glance

Included in these subscriptions:

  • Dev & IT Pro Video
  • Dev & IT Pro Power Pack

Release date 5/12/2015
Level Advanced
Runtime 1h 51m
Closed captioning Included
Transcript Included
eBooks / courseware Included
Hands-on labs Included
Sample code Included
Exams Included

Enterprise Solutions

Need reporting, custom learning tracks, or SCORM? Learn More

Course description

Security is a concern of everyone. In this course you see some of the features in SQL Server that relate to security. You are going to see the encryption keys that SQL Server creates and uses, along with certificates, to protect everything from cell level data to entire databases. Then you will see how Transparent Data Encryption can help to quickly bring a database into compliance with most regulations and requirements. You will also see what exactly is required to move an encrypted database to a new server without losing any data. User defined server roles was a new SQL Server 2012 feature that makes administration easier when it comes to security. You will see this and even create your own Server Role for members of the data team. Next you will see ways to protect individual objects in your databases using security permissions and show how, as the DBA, you can test your configuration using the Execute As capabilities of SQL Server. Next you are going to see the Resource Governor and Policy Based management. You will see the Components of the Resource Governor and see how you can use this great feature of Enterprise edition to classify incoming connections and identify specific users or groups that are using excessive resources on the server. You will then see the Policy Group Management feature of SQL Server. You will view how to create policies that check and enforce naming conventions and ensure proper backups are being configured on your servers.


This course assumes that students have working experience with SQL Server; basic relational database concepts (e.g., tables, queries, and indexing); general knowledge of XML, Transact-SQL, and a fundamental understanding of networking and security concepts.

Learning Paths

This course will help you prepare for the following certifications and exams:
MCSE: Business Intelligence
MCSA: SQL Server 2012/2014
MCSE: Data Platform
70-462: Administering Microsoft SQL Server 2012/2014 Databases

This course is part of the following LearnNowOnline SuccessPaths™:
SQL Server Administrator

Meet the expert

Chris Bell, MCITP, is an 18-year SQL Server veteran for both business intelligence and application development providing solutions for businesses, organizations, and individuals. He is the founder and CEO of WaterOx Consulting, Inc., a provider of remote SQL Server consulting and services. Chris is also the founder and current President of the Washington DC chapter of PASS and a member of the Board of Directors for CPCUG. Chris also frequently attends and presents at PASS events around the country, sharing his passion for all things SQL Server. In 2012, Chris was one of 5 finalists in the world for Red Gate’s Exceptional DBA Award.

Course outline


Encryption Keys (16:49)
  • Introduction (00:28)
  • Database Encryption Keys (01:28)
  • Managing Encryption (00:34)
  • Service Master Key (00:41)
  • Backup the SMK (01:00)
  • Restore the SMK (01:10)
  • Alter the SMK (00:57)
  • Create a Database Master Key (00:37)
  • Backup the DMK (00:49)
  • Restore a DMK (01:31)
  • Alter a DMK (01:01)
  • Demo: Backup Master Keys (00:58)
  • Demo: Alter Master Key (01:26)
  • Demo: Create Master Key (03:44)
  • Summary (00:19)
Transparent Data Encryption (15:02)
  • Introduction (00:42)
  • Certificates and Database Keys (00:34)
  • Transparent Data Encryption (00:39)
  • TDE - Pros & Cons (01:38)
  • TDE - Restoring the Backup (00:34)
  • Demo: Enable TDE (03:19)
  • Demo: Disable Encryption (00:46)
  • Demo: Moving TDE (03:28)
  • Demo: Backup TDE (03:00)
  • Summary (00:19)
Server Roles (20:01)
  • Introduction (00:32)
  • User Defined Server Roles (00:40)
  • Demo: Creating Roles (03:37)
  • Protecting Objects (01:02)
  • Grant Permissions (00:31)
  • Deny Permissions (00:28)
  • Revoke Permissions (00:31)
  • Execute As (01:09)
  • Demo: Built-In Permissions (05:44)
  • Demo: Testing Permissions (05:20)
  • Summary (00:23)

Resource Management

Resource Governor (19:49)
  • Introduction (00:36)
  • Resource Governor (04:18)
  • Demo: Resource Governor (05:10)
  • Demo: Assigning Functions (03:02)
  • Demo: Performance Monitor (06:22)
  • Summary (00:18)
Policy-Based Management (39:29)
  • Introduction (00:28)
  • Policy-Based Management (06:48)
  • Central Management Server (00:32)
  • Demo: Policy Management (05:21)
  • Demo: Create Policy (04:11)
  • Demo: Enforcing Policy (04:04)
  • Demo: Recovery Model (05:01)
  • Demo: Evaluating Policies (03:33)
  • Demo: Importing Policies (05:12)
  • Demo: Policy Violations (04:02)
  • Summary (00:13)