CREATE PROCEDURE CreateEndpointCert@ShareName SYSNAME ,@StrongPassword SYSNAME
AS BEGIN--This must be executed in the context of MasterIF (DB_NAME() <> 'master')BEGINPRINT N'This SP must be executed in master.  USE master and then retry.'RETURN (-1)ENDDECLARE @DynamicSQL varchar(1000);DECLARE @CompName varchar(250);DECLARE @HasMasterKey INT;SELECT @CompName = CONVERT(SysName, SERVERPROPERTY('MachineName'));-- Only create a master key if it doesn't already existSELECT @HasMasterKey = is_master_key_encrypted_by_server from sys.databases where name = 'master'IF (@HasMasterKey = 0)BEGIN--Create a MASTER KEY to encrypt the certificate.SET @DynamicSQL = CONCAT('CREATE MASTER KEY ENCRYPTION BY PASSWORD = ' ,  QUOTENAME(@StrongPassword, ''''));EXEC (@DynamicSQL)END--Create the certificate to authenticate the endpointSET @DynamicSQL = CONCAT('CREATE CERTIFICATE ', QUOTENAME(@CompName + '-Certificate'), ' WITH SUBJECT = ', QUOTENAME(@CompName, ''''),',EXPIRY_DATE=',QUOTENAME(20991231 ,'''') )

EXEC (@DynamicSQL);

--Create the database mirroring endpoint authenticated by the certificate.SET @DynamicSQL =CONCAT('CREATE ENDPOINT Endpoint_MirroringSTATE = STARTEDAS TCP (LISTENER_PORT = 5022, LISTENER_IP = ALL)FOR DATABASE_MIRRORING (AUTHENTICATION = CERTIFICATE ',QUOTENAME(@CompName + '-Cert'), ' , ENCRYPTION = REQUIRED ALGORITHM AES, ROLE = ALL)');EXEC (@DynamicSQL);--Back up the certificate to a common network share for import into other nodes in the clusterSET @DynamicSQL = CONCAT('BACKUP CERTIFICATE ',QUOTENAME(@CompName + '-Cert'),' To FILE = ', QUOTENAME( @ShareName + '\SQL-' + @CompName + '.cer', ''''));EXEC (@DynamicSQL);
END
GO

CREATE PROCEDURE InstallEndpointCert@CompName SYSNAME,@ShareName SYSNAME,@StrongPassword SYSNAME
AS BEGINDECLARE @DynamicSQL varchar(1000);DECLARE @MyCompName varchar(250);SELECT @MyCompName = CONVERT(SysName, SERVERPROPERTY('MachineName'));--Don't need to create LOGINs for the local systemIF (@MyCompName <> @CompName)BEGINSET @DynamicSQL = CONCAT('CREATE LOGIN ', QUOTENAME (@CompName + '-Login'), ' WITH PASSWORD= ', QUOTENAME( @StrongPassword, ''''));EXEC (@DynamicSQL);SET @DynamicSQL = CONCAT('CREATE USER ', QUOTENAME( @CompName + '-User'), ' FOR LOGIN ', QUOTENAME(@CompName + '-Login'));EXEC (@DynamicSQL);SET @DynamicSQL = CONCAT('CREATE CERTIFICATE ', QUOTENAME(@CompName +'-Cert'), ' AUTHORIZATION ', QUOTENAME(@CompName +'-User'), ' FROM FILE = ', QUOTENAME(@ShareName + '\SQL-' + @CompName + '.cer' , ''''));EXEC (@DynamicSQL);SET @DynamicSQL = CONCAT('GRANT CONNECT ON ENDPOINT::Endpoint_Mirroring TO ', QUOTENAME(@CompName +'-Login'));EXEC (@DynamicSQL);END
END
GO