# Creating and connecting to a Microsoft SQL Server DB instance
<a name="CHAP_GettingStarted.CreatingConnecting.SQLServer"></a>

This tutorial creates an EC2 instance and an RDS for Microsoft SQL Server DB instance. The tutorial shows you how to access the DB instance from the EC2 instance using the Microsoft SQL Server Management Studio client. As a best practice, this tutorial creates a private DB instance in a virtual private cloud (VPC). In most cases, other resources in the same VPC, such as EC2 instances, can access the DB instance, but resources outside of the VPC can't access it. 

After you complete the tutorial, there is a public and private subnet in each Availability Zone in your VPC. In one Availability Zone, the EC2 instance is in the public subnet, and the DB instance is in the private subnet.

**Important**  
There's no charge for creating an AWS account. However, by completing this tutorial, you might incur costs for the AWS resources you use. You can delete these resources after you complete the tutorial if they are no longer needed.

The following diagram shows the configuration when the tutorial is complete.

![\[EC2 instance and Microsoft SQL Server DB instance.\]](http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/images/getting-started-sqlserver.png)


This tutorial allows you to create your resources by using one of the following methods:

1. Use the AWS Management Console ‐ [Create a SQL Server DB instance](#CHAP_GettingStarted.Creating.SQLServer) and [Create an EC2 instance](#CHAP_GettingStarted.Creating.SQLServer.EC2)

1. Use CloudFormation to create the database instance and EC2 instance ‐ [(Optional) Create VPC, EC2 instance, and SQL Server instance using CloudFormation](#CHAP_GettingStarted.CFN.SQLServer) 

The first method uses **Easy create** to create a private SQL Server DB instance with the AWS Management Console. Here, you specify only the DB engine type, DB instance size, and DB instance identifier. **Easy create** uses the default settings for the other configuration options. 

When you use **Standard create** instead, you can specify more configuration options when you create a DB instance. These options include settings for availability, security, backups, and maintenance. To create a public DB instance, you must use **Standard create**. For information, see [Creating an Amazon RDS DB instance](USER_CreateDBInstance.md).

**Topics**
+ [

## Prerequisites
](#CHAP_GettingStarted.Prerequisites.SQLServer)
+ [

## Create an EC2 instance
](#CHAP_GettingStarted.Creating.SQLServer.EC2)
+ [

## Create a SQL Server DB instance
](#CHAP_GettingStarted.Creating.SQLServer)
+ [

## (Optional) Create VPC, EC2 instance, and SQL Server instance using CloudFormation
](#CHAP_GettingStarted.CFN.SQLServer)
+ [

## Connect to your SQL Server DB instance
](#CHAP_GettingStarted.Connecting.SQLServer)
+ [

## Explore your sample SQL Server DB instance
](#CHAP_GettingStarted.SQLServer.Exploring)
+ [

## Delete the EC2 instance and DB instance
](#CHAP_GettingStarted.Deleting.SQLServer)
+ [

## (Optional) Delete the EC2 instance and DB instance created with CloudFormation
](#CHAP_GettingStarted.DeletingCFN.SQLServer)
+ [

## (Optional) Connect your DB instance to a Lambda function
](#CHAP_GettingStarted.ComputeConnect.SQLServer)

## Prerequisites
<a name="CHAP_GettingStarted.Prerequisites.SQLServer"></a>

Before you begin, complete the steps in the following sections:
+ [Sign up for an AWS account](CHAP_SettingUp.md#sign-up-for-aws)
+ [Create a user with administrative access](CHAP_SettingUp.md#create-an-admin)

## Create an EC2 instance
<a name="CHAP_GettingStarted.Creating.SQLServer.EC2"></a>

Create an Amazon EC2 instance that you will use to connect to your database.

**To create an EC2 instance**

1. Sign in to the AWS Management Console and open the Amazon EC2 console at [https://console.aws.amazon.com/ec2/](https://console.aws.amazon.com/ec2/).

1. In the upper-right corner of the AWS Management Console, choose the AWS Region you used for the database previously.

1. Choose **EC2 Dashboard**, and then choose **Launch instance**, as shown in the following image.  
![\[EC2 Dashboard.\]](http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/images/Tutorial_WebServer_11.png)

   The **Launch an instance** page opens.

1. Choose the following settings on the **Launch an instance** page.

   1. Under **Name and tags**, for **Name**, enter **ec2-database-connect**.

   1. Under **Application and OS Images (Amazon Machine Image)**, choose **Windows**, and then choose the **Microsoft Windows Server 2022 Base**. Keep the default selections for the other choices.  
![\[Choose an Amazon Machine Image.\]](http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/images/tutorial_ec2_sqlserver_create1.png)

   1. Under **Instance type**, choose **t2.micro**.

   1. Under **Key pair (login)**, choose a **Key pair name** to use an existing key pair. To create a new key pair for the Amazon EC2 instance, choose **Create new key pair** and then use the **Create key pair** window to create it.

      For more information about creating a new key pair, see [Create a key pair](https://docs.aws.amazon.com/AWSEC2/latest/WindowsGuide/ec2-key-pairs.html) in the *Amazon EC2 User Guide for Windows Instances*.

   1. For **Firewall (security groups)** in **Network settings**, choose **Allow RDP traffic from** to connect to the EC2 instance. 

      You can choose **My IP** if the displayed IP address is correct for RDP connections. Otherwise, you can determine the IP address to use to connect to EC2 instances in your VPC using RDP. To determine your public IP address, in a different browser window or tab, you can use the service at [https://checkip.amazonaws.com](https://checkip.amazonaws.com/). An example of an IP address is 192.0.2.1/32.

       In many cases, you might connect through an internet service provider (ISP) or from behind your firewall without a static IP address. If so, make sure to determine the range of IP addresses used by client computers.
**Warning**  
If you use `0.0.0.0/0` for RDP access, you make it possible for all IP addresses to access your public EC2 instances using RDP. This approach is acceptable for a short time in a test environment, but it's unsafe for production environments. In production, authorize only a specific IP address or range of addresses to access your EC2 instances using RDP.

      The following image shows an example of the **Network settings** section.  
![\[Network settings for an EC2 instance.\]](http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/images/EC2_RDS_Connect_NtwkSettingsRDSMS.png)

   1. Keep the default values for the remaining sections.

   1. Review a summary of your EC2 instance configuration in the **Summary** panel, and when you're ready, choose **Launch instance**.

1. On the **Launch Status** page, note the identifier for your new EC2 instance, for example: `i-1234567890abcdef0`.  
![\[EC2 instance identifier on Launch Status page.\]](http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/images/getting-started-ec2-id.png)

1. Choose the EC2 instance identifier to open the list of EC2 instances. 

1. Wait until the **Instance state** for your EC2 instance has a status of **Running** before continuing.

## Create a SQL Server DB instance
<a name="CHAP_GettingStarted.Creating.SQLServer"></a>

The basic building block of Amazon RDS is the DB instance. This environment is where you run your SQL Server databases.

In this example, you use **Easy create** to create a DB instance running the SQL Server database engine with a db.t2.micro DB instance class.

**To create a Microsoft SQL Server DB instance with Easy create**

1. Sign in to the AWS Management Console and open the Amazon RDS console at [https://console.aws.amazon.com/rds/](https://console.aws.amazon.com/rds/).

1. In the upper-right corner of the Amazon RDS console, choose the AWS Region in which you want to create the DB instance.

1. In the navigation pane, choose **Databases**.

1. Choose **Create database** and make sure that **Easy create** is chosen.   
![\[Easy create option.\]](http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/images/easy-create-option.png)

1. In **Configuration**, choose **Microsoft SQL Server**.

1. For **Edition**, choose **SQL Server Express Edition**.

1. For **DB instance size**, choose **Free tier**. **Free tier** appears for free plan accounts. **Sandbox** appears for paid plan accounts.

1. For **DB instance identifier**, enter **database-test1**.

   The **Create database** page should look similar to the following image. For free plan accounts, **Free tier **appears. For paid plan accounts, **Sandbox** appears.  
![\[Engine options\]](http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/images/easy-create-sqlserver.png)

1. For **Master username**, enter a name for the master user, or keep the default name.

1. To set up a connection with the EC2 instance you created previously, open **Set up EC2 connection - *optional***.

   Select **Connect to an EC2 compute resource**. Choose the EC2 instance you created previously.  
![\[Set up EC2 connection option.\]](http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/images/EC2_RDS_Setup_Conn-EasyCreate.png)

1. To use an automatically generated master password for the DB instance, select the **Auto generate a password** box.

   To enter your master password, clear the **Auto generate a password** box, and then enter the same password in **Master password** and **Confirm password**.

1. Open **View default settings for Easy create**.  
![\[Easy create default settings.\]](http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/images/easy-create-sqlserver-confirm.png)

   You can examine the default settings used with **Easy create**. The **Editable after database is created** column shows which options you can change after you create the database.
   + If a setting has **No** in that column, and you want a different setting, you can use **Standard create** to create the DB instance.
   + If a setting has **Yes** in that column, and you want a different setting, you can either use **Standard create** to create the DB instance, or modify the DB instance after you create it to change the setting.

1. Choose **Create database**.

   To view the master username and password for the DB instance, choose **View credential details**.

   You can use the username and password that appears to connect to the DB instance as the master user.
**Important**  
You can't view the master user password again. If you don't record it, you might have to change it.   
If you need to change the master user password after the DB instance is available, you can modify the DB instance to do so. For more information about modifying a DB instance, see [Modifying an Amazon RDS DB instance](Overview.DBInstance.Modifying.md).

1. In the **Databases** list, choose the name of the new SQL Server DB instance to show its details.

   The DB instance has a status of **Creating** until it is ready to use.  
![\[Screen capture of the DB instance details.\]](http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/images/easy-create-sqlserver-launch.png)

   When the status changes to **Available**, you can connect to the DB instance. Depending on the DB instance class and the amount of storage, it can take up to 20 minutes before the new instance is available.

## (Optional) Create VPC, EC2 instance, and SQL Server instance using CloudFormation
<a name="CHAP_GettingStarted.CFN.SQLServer"></a>

Instead of using the console to create your VPC, EC2 instance, and SQL Server instance, you can use CloudFormation to provision AWS resources by treating infrastructure as code. To help you organize your AWS resources into smaller and more manageable units, you can use the CloudFormation nested stack functionality. For more information, see [ Creating a stack on the CloudFormation console](https://docs.aws.amazon.com//AWSCloudFormation/latest/UserGuide/cfn-console-create-stack.html) and [Working with nested stacks](https://docs.aws.amazon.com//AWSCloudFormation/latest/UserGuide/using-cfn-nested-stacks.html).. 

**Important**  
CloudFormation is free, but the resources that CloudFormation creates are live. You incur the standard usage fees for these resources until you terminate them. For more information, see [RDS for SQL Server pricing](https://aws.amazon.com//rds/sqlserver/pricing).

To create your resources using the CloudFormation console, complete the following steps:
+ Download the CloudFormation template
+ Configure your resources using CloudFormation

### Download the CloudFormation template
<a name="CHAP_GettingStarted.CFN.SQLServer.Step1"></a>

A CloudFormation template is a JSON or YAML text file that contains the configuration information about the resources you want to create in the stack. This template also creates a VPC and a bastion host for you along with the RDS instance.

To download the template file, open the following link, [SQL Server CloudFormation template](https://github.com/aws-ia/cfn-ps-amazon-rds/blob/main/templates/rds-sqlserver-main.template.yaml).

In the Github page, click the *Download raw file* button to save the template YAML file.

### Configure your resources using CloudFormation
<a name="CHAP_GettingStarted.CFN.SQLServer.Step2"></a>

**Note**  
Before starting this process, make sure you have a Key pair for an EC2 instance in your AWS account. For more information, see [Amazon EC2 key pairs and Linux instances](https://docs.aws.amazon.com//AWSEC2/latest/UserGuide/ec2-key-pairs.html).

When you use the CloudFormation template, you must select the correct parameters to make sure your resources are created properly. Follow the steps below:

1. Sign in to the AWS Management Console and open the CloudFormation console at [https://console.aws.amazon.com/cloudformation](https://console.aws.amazon.com/cloudformation/).

1. Choose **Create Stack**.

1. In the Specify template section, select **Upload a template file from your computer**, and then choose **Next**.

1. In the **Specify stack details** page, set the following parameters:

   1. Set **Stack name** to **SQLServerTestStack**.

   1. Under **Parameters**, set **Availability Zones** by selecting three availability zones.

   1. Under **Linux Bastion Host configuration**, for **Key Name**, select a key pair to login to your EC2 instance.

   1. In **Linux Bastion Host configuration** settings, set the **Permitted IP range** to your IP address. To connect to EC2 instances in your VPC using Secure Shell (SSH), determine your public IP address using the service at [https://checkip.amazonaws.com](https://checkip.amazonaws.com). An example of an IP address is 192.0.2.1/32.
**Warning**  
If you use `0.0.0.0/0` for SSH access, you make it possible for all IP addresses to access your public EC2 instances using SSH. This approach is acceptable for a short time in a test environment, but it's unsafe for production environments. In production, authorize only a specific IP address or range of addresses to access your EC2 instances using SSH.

   1. Under **Database General configuration**, set **Database instance class** to **db.t3.micro**.

   1. Set **Database name** to **database-test1**.

   1. For **Database master username**, enter a name for the master user.

   1. Set **Manage DB master user password with Secrets Manager** to `false` for this tutorial.

   1. For **Database password**, set a password of your choice. Remember this password for further steps in the tutorial.

   1. Under **Database Storage configuration**, set **Database storage type** to **gp2**.

   1. Under **Database Monitoring configuration**, set **Enable RDS Performance Insights** to false.

   1. Leave all other settings as the default values. Click **Next** to continue.

1. In the **Configure stack options** page, leave all the default options. Click **Next** to continue.

1. In the **Review stack** page, select **Submit** after checking the database and Linux bastion host options.

After the stack creation process completes, view the stacks with names *BastionStack* and *RDSNS* to note the information you need to connect to the database. For more information, see [ Viewing CloudFormation stack data and resources on the AWS Management Console](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/cfn-console-view-stack-data-resources.html).

## Connect to your SQL Server DB instance
<a name="CHAP_GettingStarted.Connecting.SQLServer"></a>

In the following procedure, you connect to your DB instance by using Microsoft SQL Server Management Studio (SSMS).

**To connect to an RDS for SQL Server DB instance using SSMS**

1. Find the endpoint (DNS name) and port number for your DB instance. 

   1. Sign in to the AWS Management Console and open the Amazon RDS console at [https://console.aws.amazon.com/rds/](https://console.aws.amazon.com/rds/).

   1. In the upper-right corner of the Amazon RDS console, choose the AWS Region for the DB instance.

   1. In the navigation pane, choose **Databases**.

   1. Choose the SQL Server DB instance name to display its details. 

   1. On the **Connectivity** tab, copy the endpoint. Also, note the port number. You need both the endpoint and the port number to connect to the DB instance.  
![\[Connect to a Microsoft SQL Server DB instance.\]](http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/images/SQLServerConnect2.png)

1. Connect to the EC2 instance that you created earlier by following the steps in [Connect to your Microsoft Windows instance](https://docs.aws.amazon.com/AWSEC2/latest/WindowsGuide/EC2_GetStarted.html#ec2-connect-to-instance-windows) in the *Amazon EC2 User Guide for Windows Instances*.

1. Install the SQL Server Management Studio (SSMS) client from Microsoft.

   To download a standalone version of SSMS to your EC2 instance, see [Download SQL Server Management Studio (SSMS)](https://docs.microsoft.com/en-us/sql/ssms/download-sql-server-management-studio-ssms) in the Microsoft documentation.

   1. Use the Start menu to open Internet Explorer.

   1. Use Internet Explorer to download and install a standalone version of SSMS. If you are prompted that the site isn't trusted, add the site to the list of trusted sites.

1. Start SQL Server Management Studio (SSMS). 

   The **Connect to Server** dialog box appears. 

1. Provide the following information for your sample DB instance: 

   1. For **Server type**, choose **Database Engine**. 

   1. For **Server name**, enter the DNS name, followed by a comma and the port number (the default port is 1433). For example, your server name should look as follows:

      ```
      database-test1.0123456789012.us-west-2.rds.amazonaws.com,1433
      ```

   1. For **Authentication**, choose **SQL Server Authentication**. 

   1. For **Login**, enter the username that you chose to use for your sample DB instance. This is also known as the master username.

   1. For **Password**, enter the password that you chose earlier for your sample DB instance. This is also known as the master user password.

1. Choose **Connect**. 

   After a few moments, SSMS connects to your DB instance. For security, it is a best practice to use encrypted connections. Only use an unencrypted SQL Server connection when the client and server are in the same VPC and the network is trusted. For information about using encrypted connections, see [Using SSL with a Microsoft SQL Server DB instance](SQLServer.Concepts.General.SSL.Using.md)

For more information about connecting to a Microsoft SQL Server DB instance, see [Connecting to your Microsoft SQL Server DB instance](USER_ConnectToMicrosoftSQLServerInstance.md).

For information about connection issues, see [Can't connect to Amazon RDS DB instance](CHAP_Troubleshooting.md#CHAP_Troubleshooting.Connecting).

## Explore your sample SQL Server DB instance
<a name="CHAP_GettingStarted.SQLServer.Exploring"></a>

You can explore your sample DB instance by using Microsoft SQL Server Management Studio (SSMS).

**To explore a DB instance using SSMS**

1. Your SQL Server DB instance comes with SQL Server's standard built-in system databases (master, model, msdb, and tempdb). To explore the system databases, do the following: 

   1. In SSMS, on the **View** menu, choose **Object Explorer**.

   1. Expand your DB instance, expand **Databases**, and then expand **System Databases** as shown.   
![\[Object Explorer displaying the system databases.\]](http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/images/SQL-SSMS-SystemDBs.png)

   Your SQL Server DB instance also comes with a database named `rdsadmin`. Amazon RDS uses this database to store the objects that it uses to manage your database. The `rdsadmin` database also includes stored procedures that you can run to perform advanced tasks. 

1. Start creating your own databases and running queries against your DB instance and databases as usual. To run a test query against your sample DB instance, do the following: 

   1. In SSMS, on the **File** menu, point to **New** and then choose **Query with Current Connection**. 

   1. Enter the following SQL query:

      ```
      select @@VERSION
      ```

   1. Run the query. SSMS returns the SQL Server version of your Amazon RDS DB instance.   
![\[SQL Query Window.\]](http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/images/SQL-Connect-Query.png)

## Delete the EC2 instance and DB instance
<a name="CHAP_GettingStarted.Deleting.SQLServer"></a>

After you connect to and explore the sample EC2 instance and DB instance that you created, delete them so you're no longer charged for them.

If you used CloudFormation to create resources, skip this step and go to the next step.

**To delete the EC2 instance**

1. Sign in to the AWS Management Console and open the Amazon EC2 console at [https://console.aws.amazon.com/ec2/](https://console.aws.amazon.com/ec2/).

1. In the navigation pane, choose **Instances**.

1. Select the EC2 instance, and choose **Instance state, Terminate instance**.

1. Choose **Terminate** when prompted for confirmation.

For more information about deleting an EC2 instance, see [Terminate your instance](https://docs.aws.amazon.com//AWSEC2/latest/WindowsGuide/terminating-instances.html) in the *User Guide for Windows Instances*.

**To delete the DB instance with no final DB snapshot**

1. Sign in to the AWS Management Console and open the Amazon RDS console at [https://console.aws.amazon.com/rds/](https://console.aws.amazon.com/rds/).

1. In the navigation pane, choose **Databases**.

1. Choose the DB instance that you want to delete.

1. For **Actions**, choose **Delete**.

1. Clear **Create final snapshot?** and **Retain automated backups**.

1. Complete the acknowledgement and choose **Delete**. 

## (Optional) Delete the EC2 instance and DB instance created with CloudFormation
<a name="CHAP_GettingStarted.DeletingCFN.SQLServer"></a>

If you used CloudFormation to create resources, delete the CloudFormation stack after you connect to and explore the sample EC2 instance and DB instance, so you're no longer charged for them.

**To delete the CloudFormation resources**

1. Open the CloudFormation console.

1. On the **Stacks** page in the CloudFormationconsole, select the root stack (the stack without the name VPCStack, BastionStack or RDSNS).

1. Choose **Delete**.

1. Select **Delete stack** when prompted for confirmation.

For more information about deleting a stack in CloudFormation, see [Deleting a stack on the CloudFormation console](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/cfn-console-delete-stack.html) in the *AWS CloudFormation User Guide*.

## (Optional) Connect your DB instance to a Lambda function
<a name="CHAP_GettingStarted.ComputeConnect.SQLServer"></a>

You can also connect your RDS for SQL Server DB instance to a Lambda serverless compute resource. Lambda functions allow you to run code without provisioning or managing infrastructure. A Lambda function also allows you to automatically respond to code execution requests at any scale, from a dozen events a day to hundreds of per second. For more information, see [Automatically connecting a Lambda function and a DB instance](lambda-rds-connect.md).