Migrating Passwords

SQL Server Setup

SQL Server only uses passwords on packages in connection with certain package protection level options. Therefore, password-protected packages that are fully migrated from SQL Server 2000 to SQL Server do not retain passwords, although you must provide the password during the migration process. For information about package protection levels in SQL Server, see Setting the Protection Level of Packages.

Note:
Password-protected packages cannot be migrated unless you provide their passwords.

If the DTS run-time engine for SQL Server 2000 is installed, you can continue to run SQL Server 2000 packages. You can also include these packages in SQL Server data transformation solutions. SQL Server continues to support package passwords in this scenario. For example, the Execute DTS 2000 Package task includes a password property for passing a password to a SQL Server 2000 package.

Adding Security Features to Packages

After a package is migrated, you can add the following security features:

  • Set the protection level on the package to encrypt all or only sensitive property values when the package is saved. For more information, see Integration Services Packages.
  • Digitally sign the package and set properties to ensure that the signature is checked when the package is loaded. For more information, see Using Digital Signatures with Packages.
    Important:
    When configured to check the signature of the package, Integration Services only checks whether the digital signature is present, is valid, and is from a trusted source. Integration Services does not check whether the package has been changed.

  • Encrypt checkpoints on packages that use checkpoints. For more information, see Using Checkpoints in Packages.

For more information about securing the Integration Services service and Integration Services packages, see Security Overview (Integration Services).

See Also