The database encryption uses a certificate and a private key that is generated on the SQL Server when the databases are installed. This certificate and private key need to be created on any other server in which the encryption databases are to be restored on.
- Identify three database servers:
- PrincipalDB (Primary) server
- MirrorDB (Mirror) server
- WitnessDB (Witness) Server
Note the servers’ IP addresses.
Copy the mirroring SQL files from this installation package to each of the three servers.
Gather the TRUE Fully Qualified Domain Name (FQDN) for the three servers.
Create entries in the C:\windows\system32\drivers\etc\hosts file.
NOTE: The hostname you use for this is required for SQL Server. You cannot create three “fake” host names in the hosts file – it does not function without using the true System Name and DNS domain/suffix of the server.
NOTE: If you do not know the name of your server, reference Microsoft’s documentation for information on obtaining the server name.