Enabling Encryption on SQL Server is creating problems


hi all,

i trying enable encryption sql server.  thing trying application client-server based (iis webserver & sql server 2005 express databaseserver).  detailing process followed the same.  per theory, should work if settings mentioned below.  but, i’m getting error message while connecting sql server management studio encryption enabled.

the error message - “a connection established server, error occurred during pre-login handshake. (provider: ssl provider, error: 0 - certificate chain issued authority not trusted.)”

step 1 – create & install certificate (tried in both win 2003 & win 7)

installed openssl tool & configured same

generated private key using open ssl command (openssl genrsa -out server.key 1024)

generated certificate signing request using openssl command (openssl req -new -key server.key -out server.csr)

generates self-signed certificate using openssl command (openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt)

installed certificate

step 2 – settings in microsoft management console

imported created certificate file (server.crt) “personal” group

added certificate “trusted root certification authorities” group

step 3 – settings in sql server configuration manger (tied sql server 2005 express, sql server 2012 express, sql server 2012)

set “force encryption” flag “yes”

could not see installed certificate certificates tab.  but, of researches did mentioned sql server automatically certificates fqdn

restarted sql server instance

step 4 – verify if encryption works using sql server management studio

changed default connection properties while logging in; checked “encrypt connection”

on click of connect button, getting below error, “a connection established server, error occurred during pre-login handshake. (provider: ssl provider, error: 0 - certificate chain issued authority not trusted.)”

step 5 – verifying encryption application

changed connection string include “encrypt=true” enable encryption.

on running application, getting same message got in step 4

it great if me resolve issue.  in advance.

regards,

praveen k nair


use certmgr.exe install certificate.

  • run certmgr.exe under local machine administrator account. domain account local administrator privileges not work
certmgr /add your.certificate.filename.cer /s /r localmachine root certmgr /add your.certificate.filename.cer /s /r localmachine trustedpublisher

you may check this: setting ssl encryption sql server using certificates – issues, tips & tricks



SQL Server  >  SQL Server Express



Comments

Post a Comment

Popular posts from this blog

SQL server replication error Cannot find the dbo or user defined function........

hi there, i ran problem while deploying sql 2008 transactional replication between 2 servers lets assume server , b. actually created  both distributor , publisher on server , after created subscriber pointed server b, launch replication monitor , found big red cross. when click on tab "distributor subscriber history" error says "cannot find either column "dbo" or user defined-function or aggregate "dbo.ufnleadingzeros", or name ambiguous". can body regarding issue. regards, ishuv hi, you need compare data , others reseved, index size, unused should not compared. differs. here server - data - 87896 kb server b - data - 78152 kb server data size includes publication tables, can't compare directly. need check article article know exact data size. SQL Server  >  ...
Read more

BIT Version

  hi,     knows how find out ther bit version in sql  , windows os (32 or 64)   regards, s.balavenkatesh   microsoft sql server 2005 - 9.00.1399.06 (intel x86) oct 14 2005 00:33:37 copyright (c) 1988-2005 microsoft corporation standard edition on windows nt 5.2 (build 3790: service pack 2)     intel x86)   -- says sql server 32 bit   madhu SQL Server  >  SQL Server Tools
Read more

Admin Permissions

hi need create new 'role' following permissions, 1. access sql server logs. 2. access maintenance plans ( can avoid access) 3. access activity monitor 4. normal access product databases , not system db´s need guidance on how it, can point me in right direction please? thanks 1.grant  execute on xp_readerrorlog [domainname\ad user or group]; 2. http://technet.microsoft.com/en-us/library/ms191002.aspx 3.view server state permission 4. make user member of dbo_owner database role. best regards,uri dimant sql server mvp, http://sqlblog.com/blogs/uri_dimant/ ms sql optimization: ms sql development , optimization ms sql consulting: large scale of database , data cleansing remote dba services: improves ms sql database performance sql server integration services: business intelligence SQL Server  >  ...
Read more