Setting up a certificate for a server instance isn't hard, but it's also not easy. It's also something that I don't know how easy would be to automate in many environments. I know that you can use APIs from somewhere like Let's Encrypt, but integrating that into a server setup process would be something. What about integrating this into instances in containers? I don't know that I think many SQL Server organizations have DNS integrated for most of their database servers, much less asking them to also get certificates set up.
I do think that Microsoft likely has better infrastructure in place, and better staff resources, than most of us. I can see this being something needed for Azure SQL DB and Azure MI. Heck, this might be something we want for all services that we get in the cloud. Since we don't control much of anything other than the service, and Microsoft can automate the process of generating certificates, this makes sense.
I think this might be something that is a good idea for production systems as well, ensuring that when a DBA or system makes a privileged connection to a database server in production, the person or process is sure of which database server is at the other end of the connection. I don't know that I've seen an exploit in the wild where someone impersonates a prod server and captures credentials in some man-in-the-middle attack, but I wouldn't be surprised if it happens.
Do you think you also ought to avoid trusting the server certificate? I don't think this is practical in many orgs, but I'd be curious what you think today.
