For DBA Team:
Before changing the SQL configuration, we need the following backups.
1. Please make sure you have the password for all the accounts which are being used in Orchestrator
2. Back up SQL Server service master key
Sqlcmd -Q "BACKUP SERVICE MASTER KEY TO FILE ='C:\BACKUP\MASTER_KEY.BAK' ENCRYPTION BY PASSWORD = 'P@ssw0rd'"
Please note that where P@ssw0rd is the password that will be used to protect the service master key in the file that is created. If the password is lost, the service master key cannot be recovered from the file.
3. Full Back up the Orchestrator database
4. Install the SQL server role on a SQL 2012 server and configure the SQL if you are using customer port.
5. Restore Orchestrator database in the new SQL server
6. Restore the SQL Server service master key in the always on listener on new SQL server
Restore the Microsoft SQL Server service master key on the new SQL server. This will enable decryption of Orchestrator data on the new SQL server.
Sqlcmd -Q "RESTORE SERVICE MASTER KEY FROM FILE = 'C:\BACKUP\MASTER_KEY.BAK' DECRYPTION BY PASSWORD = P@ssw0rd;"
Once SQL configuration is done, we need to follow the below steps.
Action for Application Team:
Management server and runbook servers
You can use the Database Configuration utility to change the connection settings that the management server and runbook servers installed in your environment. The settings for these servers are stored in an encrypted file called Settings.dat. If you change your orchestration database settings, such as the port, user account access, or computer name, you must manually uninstall and reinstall all runbook servers, and then re-run the Database Configuration utility on the management server and all runbook servers.
To change the database settings for the management server and runbook servers
1. On the management server, click Start, point to All Programs, click Microsoft System Center , click Orchestrator, and then click Data Store Configuration.
2. In the Server box, enter the name of the server that is hosting the database by using the format \,. You can click the ellipsis (…) button to select the computer. You do not have to include the instance if the Orchestrator database is installed on the default instance. You do not have to include the port if SQL Server is usually installed on the default port 1433.
Example: If the Orchestrator database is installed on an instance called MyInstance on a computer named MySQLServer that is configured on port 12345, enter MySQLServer\MyInstance,12345.
Example: If the Orchestrator database is installed on an instance called MyInstance on a computer named MySQLServer that is configured on port 1433, enter MySQLServer\MyInstance.
Example: If the orchestration database is installed on the default instance on a computer named MySQLServer that is configured on port 1433, enter MySQLServer.
3. Select the authentication method to use to connect to the SQL Server:
· Windows Authentication Connect to the SQL Server by using Windows Authentication.
· SQL Server Authentication Connect to the SQL Server by using a SQL Server user account. Type the User Name and Password of the SQL Server user account. This account must have rights to create, write, and own a database and create, update, and delete rows in the database.
1. Click Next.
2. In the Data Store pane, click Use an existing database.
3. In the Name list, select the database.
4. Click Finish.
To change the database settings for the Orchestrator web service
1. Log on with administrative credentials to the computer with the Orchestration console installed.
2. Open a Command Prompt window with administrator credentials.
3. Run the following command to decrypt the Web.config file:
C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_regiis.exe -pdf "connectionStrings" "C:\Program Files (x86)\Microsoft System Center \Orchestrator\Web Service\Orchestrator"
4. To start the IIS Manager, click Start, point to Administrative Tools, and then click Internet Information Services (IIS) Manager.
5. Expand the Sites node, and then click Microsoft System Center Orchestrator Web Service.
6. In the Features View, double-click Connection Strings.
7. In the Connections String pane, double-click OrchestratorContext.
8. In the Custom box, scroll down to the portion of the string that includes the server name (Data Source) and database name (Initial Catalog). Modify these values as required.
9. Click OK to close the dialog box.
10. Close IIS Manager.
11. Run the following command to encrypt the Web.config file:
C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_regiis.exe -pef "connectionStrings" "C:\Program Files (x86)\Microsoft System Center \Orchestrator\Web Service\Orchestrator"