Symptoms
Consider the following scenario:
-
You have an In-Memory OLTP database in Microsoft SQL Server 2014.
-
You enable Transparent Data Encryption (TDE) on the database.
-
You disable TDE, and drop all the encryption keys and certificates.
-
You try to make the database offline.
In this scenario, you cannot bring the database offline even a log recovery is needed. Additionally, you receive the following error message:
Msg 33111, Level 16, State 3, Line 37
Cannot find server certificate with thumbprint '0xA4818012ECFD38A0C1A73298B8A0460F6C261392'.
Msg 5181, Level 16, State 5, Line 37
Could not restart database "<Database Name>". Reverting to the previous status.
Msg 5069, Level 16, State 1, Line 37
ALTER DATABASE statement failed.
Msg 9016, Level 21, State 7, Line 37
An error occurred while processing the log for database “<Database Name>”. The log block could not be decrypted.
Msg 3414, Level 21, State 1, Line 37
An error occurred during recovery, preventing the database “<Database Name>”. (x:y) from restarting. Diagnose the recovery errors and fix them, or restore from a known good backup. If errors are not corrected or expected, contact Technical Support.
Resolution
The issue was first fixed in the following cumulative update of SQL Server.
Cumulative Update 4 for SQL Server 2014 /en-us/help/2999197
Each new cumulative update for SQL Server contains all the hotfixes and all the security fixes that were included with the previous cumulative update. Check out the latest cumulative updates for SQL Server:
Status
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.