This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 45%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)
Hello noticed somewhat of a new recent feature xp_copy_files (for SQL Server2019 & higher) which we have SQL Server 2022 (believe most things similarly were done previously via xp_cmdshell which had security concerns).
Is it correct to say xp_copy_files is more secure than xp_cmdshell and if yes... how is it more secure and any concerns as well and what are the minimum permissions need to run this?
As an example test I have the following:
EXEC master.sys.xp_copy_files
'C:\SQLServer2022LocalBackups\*.bak',
'S:\SharedTargetFolderLocation\';
But would like to copy all of my SQL .bak files that are only 1 day old instead of including all older previous days .bak files within source C drive Backups folder to target S drive Shared folder.
Does this new xp_copy_files have a parameter/option to do this (like say specify less than or equal to 1,440 minutes to represent 1 day)?
Thanks in advance.
I suggest one avoid using undocumented objects like the xp_copy_files extended stored procedure. These are intended to be used internally by SQL Server tools and utilities. Undocumented objects are unsupported and may be changed or removed in subsequent versions and updates, breaking code that uses them.
Albeit it may be more convenient in some cases to manage files using T-SQL, a more robust solution is to leverage a scripting language like Powershell scheduled with SQL Server Agent. This will also mitigate concerns of using xp_cmdshell, which many organizations prohibit for security reasons.
Below is a basic example for your task:
try {
$copyCreationTime = (Get-date).AddDays(-1)
$Files = Get-ChildItem "C:\SQLServer2022LocalBackups\*.bak" -File
foreach ($File in $Files)
{
if ($File.CreationTime -lt $copyCreationTime)
{
Copy-Item $File -Destination "S:\SharedTargetFolderLocation\"
Write-Host "Copying $File"
}
}
}
catch {
throw
}
Thanks Dan for your reply, really appreciate it.
Strange I was able to successfully run your PowerShell manually via the [Windows PowerShell ISE] console but when I Copied/Pasted it into a SQL Agent job and run the job it doesn't copy any files and step output mentions the following:
A job step received an error at line 8 in a PowerShell script. The corresponding line is ' Copy-Item $File -Destination "S:\SharedTargetFolderLocation"
'. Correct the script and reschedule the job. The error information returned by PowerShell is: 'Source and destination path did not resolve to the same provider.
I came across the following link https://dba.stackexchange.com/questions/125303/sql-server-job-powershell-is-failing mentioning something about $() syntax that SQL Agent doesn't like?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 31%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENN%3C/text%3E%3C/svg%3E)
Can you save your PowerShell to a file and use cmd type to run it? E.g.
Firrst, make sure the SQL Agent account has permissions to the directories. Personally, I prefer to execute powershell scripts from external files like Naomi suggested since that avoids the need to escape code.