Friday, April 27, 2012 8:04 PM
I've inherited two SQL 2000 SP4 clusters running on a two node Windows 2003 SP2 cluster, one SQL cluster (i.e. resource group) on each node. Two more nodes have recently been added to the Windows cluster. I need to add those nodes to the 2 existing SQL clusters. Both SQL instances have "force protocol encryption" enabled in the server network utility. I believe that creates a self-signed certificate on the node. Running "winhttpcertcfg -l -c LOCAL_MACHINE\MY -s VirtualServerName" confirms that both existing nodes have both instances' certificates installed.
Q1. To add the new nodes to the SQL clusters (i.e. allow the resource groups to run on the new nodes), assuming the Windows cluster itself is configured correctly, is there anything I need to do other than run the installer and add the nodes? (I've done this before on SQL 2008R2 but never on SQL 2000.)
Q2. How do I copy those certificates to the new nodes so that SQL will both start, and continue to encrypt network communications? Will the installation wizard automatically copy the certificates to the new nodes once I add them to the sql cluster? I thought I could use the "internet options" control pamel applet to export/import them. but they don't show up under any of the tabs.
- Edited by chuckh1958 Friday, April 27, 2012 8:13 PM
Monday, April 30, 2012 4:25 AMModerator
According to your description, there is a good article for your situation, please refer to http://technet.microsoft.com/en-us/library/cc917693.aspx#EKAA
Please remember to mark the replies as answers if they help and unmark them if they provide no help.
- Marked As Answer by chuckh1958 Monday, April 30, 2012 4:52 PM
Monday, April 30, 2012 12:48 PM
Please check the following link.
Please click "Propose As Answer" if a post solves your problem. OR "Vote As Helpful" if a post has been useful to you. Thanks, Debasish Mohanty Blog:http://sqlcodebank.blogspot.com
- Edited by Debasish Mohanty Monday, April 30, 2012 2:35 PM
Monday, April 30, 2012 3:45 PMUnfortunately neither of those links talk about adding additional physical nodes to an existing SQL cluster. :(
Monday, April 30, 2012 4:52 PM
Thanks. The section entitled "Adding or Removing a Cluster Node from the Virtual Server Definition" seems to be exactly what I was looking for.
The only other "gotcha" that I've seen so far is that the existing "virtual servers" (aks SQL Clusters) are using "force protocol encryption". It took some time but I finally found where the related certificates were stored and was able to export/import them into the new nodes.
I think I am good to go now.