commands

^

Disable-DbaDbEncryption

Author Chrissy LeMaire (@cl), netnerds.net
Availability Windows, Linux, macOS

 

 

Want to see the source code for this command? Check out Disable-DbaDbEncryption on GitHub.
Want to see the Bill Of Health for this command? Check out Disable-DbaDbEncryption.

Synopsis

Disables encryption on a database

Description

Disables encryption on a database

Encryption is not fully disabled until the Encryption Key is dropped

Consequently, this command will drop the key by default

Syntax

Disable-DbaDbEncryption
    [[-SqlInstance] <DbaInstanceParameter[]>]
    [[-SqlCredential] <PSCredential>]
    [[-Database] <String[]>]
    [[-InputObject] <Database[]>]
    [-NoEncryptionKeyDrop]
    [-EnableException]
    [-WhatIf]
    [-Confirm]
    [<CommonParameters>]

 

Examples

 

Example: 1
PS C:\> Disable-DbaDbEncryption -SqlInstance sql2017, sql2016 -Database pubs

Disables database encryption on the pubs database on sql2017 and sql2016

Example: 2
PS C:\> Disable-DbaDbEncryption -SqlInstance sql2017 -Database db1 -Confirm:$false

Suppresses all prompts to disable database encryption on the db1 database on sql2017

Example: 3
PS C:\> Get-DbaDatabase -SqlInstance sql2017 -Database db1 | Disable-DbaDbEncryption -Confirm:$false

Suppresses all prompts to disable database encryption on the db1 database on sql2017 (using piping)

Optional Parameters

-SqlInstance

The target SQL Server instance or instances.

Alias
Required False
Pipeline false
Default Value
-SqlCredential

Login to the target instance using alternative credentials. Accepts PowerShell credentials (Get-Credential). Windows Authentication, SQL Server Authentication, Active Directory - Password, and Active Directory - Integrated are all supported. For MFA support, please use Connect-DbaInstance.

Alias
Required False
Pipeline false
Default Value
-Database

The database that where encryption will be disabled

Alias
Required False
Pipeline false
Default Value
-InputObject

Enables pipeline input from Get-DbaDatabase

Alias
Required False
Pipeline true (ByValue)
Default Value
-NoEncryptionKeyDrop

Encryption is not fully disabled until the Encryption Key is dropped. Consequently, Disable-DbaDbEncryption will drop the key by default. Use this to keep the encryption key. Note that if you keep your key, your database will not be fully decrypted.

Alias
Required False
Pipeline false
Default Value False
-EnableException

By default, when something goes wrong we try to catch it, interpret it and give you a friendly warning message. This avoids overwhelming you with "sea of red" exceptions, but is inconvenient because it basically disables advanced scripting. Using this switch turns this "nice by default" feature off and disables you to catch exceptions with your own try/catch.

Alias
Required False
Pipeline false
Default Value False
-WhatIf

Shows what would happen if the command were to run. No actions are actually performed.

Alias wi
Required False
Pipeline false
Default Value
-Confirm

Prompts you for confirmation before executing any changing operations within the command.

Alias cf
Required False
Pipeline false
Default Value