SQL 2014 Admin, Part 3 of 5: Security and Resource Mgmt

SQL 2014 Admin, Part 3 of 5: Security and Resource Mgmt

LearnNow Online
Updated Aug 22, 2018

Course description

Security is a concern of everyone. In this course you see some of the features in SQL Server that relate to security. You are going to see the encryption keys that SQL Server creates and uses, along with certificates, to protect everything from cell level data to entire databases. Then you will see how Transparent Data Encryption can help to quickly bring a database into compliance with most regulations and requirements. You will also see what exactly is required to move an encrypted database to a new server without losing any data. User defined server roles was a new SQL Server 2012 feature that makes administration easier when it comes to security. You will see this and even create your own Server Role for members of the data team. Next you will see ways to protect individual objects in your databases using security permissions and show how, as the DBA, you can test your configuration using the Execute As capabilities of SQL Server. Next you are going to see the Resource Governor and Policy Based management. You will see the Components of the Resource Governor and see how you can use this great feature of Enterprise edition to classify incoming connections and identify specific users or groups that are using excessive resources on the server. You will then see the Policy Group Management feature of SQL Server. You will view how to create policies that check and enforce naming conventions and ensure proper backups are being configured on your servers.

Each LearnNowOnline training course is made up of Modules (typically an hour in length). Within each module there are Topics (typically 15-30 minutes each) and Subtopics (typically 2-5 minutes each). There is a Post Exam for each Module that must be passed with a score of 70% or higher to successfully and fully complete the course.


This course assumes that students have working experience with SQL Server; basic relational database concepts (e.g., tables, queries, and indexing); general knowledge of XML, Transact-SQL, and a fundamental understanding of networking and security concepts.

Meet the expert

Chris Bell

Chris Bell, MCITP, is an 18-year SQL Server veteran for both business intelligence and application development providing solutions for businesses, organizations, and individuals. He is the founder and CEO of WaterOx Consulting, Inc., a provider of remote SQL Server consulting and services. Chris is also the founder and current President of the Washington DC chapter of PASS and a member of the Board of Directors for CPCUG. Chris also frequently attends and presents at PASS events around the country, sharing his passion for all things SQL Server. In 2012, Chris was one of 5 finalists in the world for Red Gate’s Exceptional DBA Award.

Video Runtime

111 Minutes

Time to complete

428 Minutes

Course Outline


Encryption Keys (16:49)

  • Introduction (00:28)
  • Database Encryption Keys (01:28)
  • Managing Encryption (00:34)
  • Service Master Key (00:41)
  • Backup the SMK (01:00)
  • Restore the SMK (01:10)
  • Alter the SMK (00:57)
  • Create a Database Master Key (00:37)
  • Backup the DMK (00:49)
  • Restore a DMK (01:31)
  • Alter a DMK (01:01)
  • Demo: Backup Master Keys (00:58)
  • Demo: Alter Master Key (01:26)
  • Demo: Create Master Key (03:44)
  • Summary (00:19)

Transparent Data Encryption (15:02)

  • Introduction (00:42)
  • Certificates and Database Keys (00:34)
  • Transparent Data Encryption (00:39)
  • TDE - Pros & Cons (01:38)
  • TDE - Restoring the Backup (00:34)
  • Demo: Enable TDE (03:19)
  • Demo: Disable Encryption (00:46)
  • Demo: Moving TDE (03:28)
  • Demo: Backup TDE (03:00)
  • Summary (00:19)

Server Roles (20:01)

  • Introduction (00:32)
  • User Defined Server Roles (00:40)
  • Demo: Creating Roles (03:37)
  • Protecting Objects (01:02)
  • Grant Permissions (00:31)
  • Deny Permissions (00:28)
  • Revoke Permissions (00:31)
  • Execute As (01:09)
  • Demo: Built-In Permissions (05:44)
  • Demo: Testing Permissions (05:20)
  • Summary (00:23)
Resource Management

Resource Governor (19:49)

  • Introduction (00:36)
  • Resource Governor (04:18)
  • Demo: Resource Governor (05:10)
  • Demo: Assigning Functions (03:02)
  • Demo: Performance Monitor (06:22)
  • Summary (00:18)

Policy-Based Management (39:29)

  • Introduction (00:28)
  • Policy-Based Management (06:48)
  • Central Management Server (00:32)
  • Demo: Policy Management (05:21)
  • Demo: Create Policy (04:11)
  • Demo: Enforcing Policy (04:04)
  • Demo: Recovery Model (05:01)
  • Demo: Evaluating Policies (03:33)
  • Demo: Importing Policies (05:12)
  • Demo: Policy Violations (04:02)
  • Summary (00:13)