服务代理、端点 - 我真的需要证书才能在两个服务器之间发送消息吗?

发布于 2024-11-02 19:22:29 字数 738 浏览 3 评论 0原文

我真的需要创建证书才能在 sql 服务器之间发送排队消息吗? 我可以对两台服务器上的端点使用 dbo 身份验证吗?

create endpoint target
state = started
as TCP
(
LISTENER_PORT = 4022
)
FOR SERVICE_BROKER (AUTHENTICATION = CERTIFICATE ????, ENCRYPTION = ENABLED);

如果我必须使用证书,我可以使用用户数据库证书而不是主数据库证书吗?我该怎么做呢?

我目前不关心安全问题。两台服务器都位于封闭的局域网中,无法访问互联网。


抱歉,我没有分析器。我正在使用 sql express 2005。

  CREATE ROUTE RoutetoTarget
    WITH
    BROKER_INSTANCE = 'xxxxxx-xxx-xx-x-x-x-x',
   SERVICE_NAME = 'LOCALReceivingService',

<---仅在同一服务器上的实例中有效。但是,一旦我添加带有端口号的目标服务器 IP(我在目标服务器上创建的端点)消息就会得到送入虚空。他们永远无法到达其他服务器。

ADDRESS = 'TCP://targetipadress:PORT'

Do I really need to create a certificate to send a queued message between sql servers?
Can I use dbo authentication for the endpoint on both servers?

create endpoint target
state = started
as TCP
(
LISTENER_PORT = 4022
)
FOR SERVICE_BROKER (AUTHENTICATION = CERTIFICATE ????, ENCRYPTION = ENABLED);

IF I have to use a certificate, can I use a User database certificate instead of one on master? How would I go about doing this?

I am not concerned with security at the moment. Both servers are on a closed lan, with no internet access.


Sorry.I do not have profiler. I am using sql express 2005.

  CREATE ROUTE RoutetoTarget
    WITH
    BROKER_INSTANCE = 'xxxxxx-xxx-xx-x-x-x-x',
   SERVICE_NAME = 'LOCALReceivingService',

<---that works only in instances on same server. However once I add the target server IP with port number (the endpoint I created on target server) messages get sent into the void. They never make it to the other server.

ADDRESS = 'TCP://targetipadress:PORT'

如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。

扫码二维码加入Web技术交流群

发布评论

需要 登录 才能够评论, 你可以免费 注册 一个本站的账号。

评论(2

苦妄 2024-11-09 19:22:29

我想通了。您至少需要拥有本地和远程服务的 AUTHORIZATION DBO,确保端点中的所有加密以及发送的消息已关闭/禁用,最后,不要有主密钥。许多在线网站表示,如果没有加密的主密钥,Broker 将无法工作,但在这种情况下似乎并非如此。

I figured it out. You need to at least have AUTHORIZATION DBO for both local and remote service, make sure all encryption in endpoint, and sent message is off/disabled, and lastly, DO NOT have a master key. Many online sites say Broker will not work without an encrypted master key, but doesn't seem to be true in this case.

瑶笙 2024-11-09 19:22:29

您不需要使用证书:

CREATE ENDPOINT ssb_target
STATE = STARTED
AS TCP 
(
    LISTENER_PORT = 4022
)
FOR SERVICE_BROKER
(
    AUTHENTICATION = WINDOWS,
    ENCRYPTION = DISABLED
)
GO

更多信息:链接

You are not required to use a certificate:

CREATE ENDPOINT ssb_target
STATE = STARTED
AS TCP 
(
    LISTENER_PORT = 4022
)
FOR SERVICE_BROKER
(
    AUTHENTICATION = WINDOWS,
    ENCRYPTION = DISABLED
)
GO

More info: link

~没有更多了~
我们使用 Cookies 和其他技术来定制您的体验包括您的登录状态等。通过阅读我们的 隐私政策 了解更多相关信息。 单击 接受 或继续使用网站,即表示您同意使用 Cookies 和您的相关数据。
原文