April 1, 2015 at 5:51 am
I have a customer who is looking to encrypt their applications connection to the back-end SQL server. I've gotten a valid certificate for the server from a trusted CA, and it's installed on the server (shows up in Personal certificates in the Certificate MMC when selecting the computer) and I can choose it in the drop down on the certificates tab of the SQL Network protocols properties in Configuration Manager.
Now, my question:
If I select the certificate but do NOT enable the "Force Encryption" option, the client will be able to request encryption on their end, and the connection will then be encrypted. If the client (other applications) do NOT request encryption, they will still be able to connect, but their connection will be un-encrypted. Is this correct?
I've Googled quite a bit, and the closest I've found to an answer is the following topic here: http://www.sqlservercentral.com/Forums/Topic966672-146-1.aspx?Highlight=select+ssl+certificate+connection
Lastly, I could've swore I had found some information indicating that some methods of establishing a connection to SQL can fail when Force Encryption is enabled, as the method doesn't support SSL encryption. Now I'm not finding this information...
Was I imagining things?
Thanks all
Jason
(Dang, I miss being able to stand up, set up, quick-test, then delete the VMs in my own test environment at work...)
April 1, 2015 at 5:56 am
And the topic I linked to in my original post just happened to have the link to the MS document that answer my question...
https://technet.microsoft.com/en-us/library/ms189067.aspx
Sometimes, I post before I read...
:hehe:
Viewing 2 posts - 1 through 2 (of 2 total)
You must be logged in to reply to this topic. Login to reply