IBM Support

SQL1782N on Create Database with encrypt option if Master Node is down

Technical Blog Post


Abstract

SQL1782N on Create Database with encrypt option if Master Node is down

Body

When we have Database Encryption is setup with Master-Clone node in KeySecure.
If Master Node is down,we may get error while Creating database.

When MASTER Node is down in Kesecure:
 

db2 create db test encrypt

SQL1782N  The command or operation failed because an error was encountered

accessing the centralized key manager. Reason code "5:111".

 

A new master key is automatically added when you create an encrypted database without
specifying the MASTER KEY LABEL option on the CREATE DATABASE command.


Clone servers are considered read only and are only used for retrieving
existing master keys from the centralized keystore. Clone servers are not used when
inserting a new key.


Workaround:
a) Set your master server to your clone IP.
b) Create the master key on KeySecure ahead of time when Master is available before using create db.

 

[{"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSEPGG","label":"DB2 for Linux, UNIX and Windows"},"Component":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"","Edition":"","Line of Business":{"code":"LOB10","label":"Data and AI"}}]

UID

ibm13286155