Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Problem during SSL connection to SQL Server

Tags:

sql-server

ssl

I want to connect to my local SQL Server 2008 database using SSL.

I didn't install any certificates on the server because according to this http://msdn.microsoft.com/en-us/library/ms189067.aspx

If a trusted certificate is not installed, SQL Server will generate a self-signed certificate when the instance is started, and use the self-signed certificate to encrypt the credentials.

This is simple code

SqlConnection connection = 
    new SqlConnection(@"Data Source=somePC\SqlExpress;Initial Catalog=test;integrated security = sspi;Persist Security Info=True;Encrypt=true;");

SqlCommand command = new SqlCommand("Select count(*) from Employee", connection);
connection.Open();
int employeeCount = (int)command.ExecuteScalar();
connection.Close();`

Note that encrypt=true;

but on connection.Open() an exception is raised with message

A connection was successfully established with the server, but then an error occurred during the pre-login handshake. (provider: SSL Provider, error: 0 - The certificate chain was issued by an authority that is not trusted.)

Have can I approve this self-signed certificate ?

like image 289
Disappointed Avatar asked Aug 11 '11 10:08

Disappointed

2 Answers

You need to tell your client to trust whatever certificate is presented. A self-signed certificate will not be trusted because it's not signed by any CA your computer trusts. Change your connection by adding TrustServerCertificate=True as follows:

SqlConnection connection = 
    new SqlConnection(@"Data Source=somePC\SqlExpress;Initial Catalog=test;integrated security = sspi;Persist Security Info=True;Encrypt=true; TrustServerCertificate=True");

SqlCommand command = new SqlCommand("Select count(*) from Employee", connection);
connection.Open();
int employeeCount = (int)command.ExecuteScalar();
connection.Close();
like image 131
Dave Lucre Avatar answered Oct 22 '22 05:10

Dave Lucre

In order for RPC over Http to work you must have a Trusted CA Root Certificate installed and configured. In a situation where you are using a self-signed cert you will need to install the certificate into the Trusted Root Certification Authorities store.

Install the cert into your trusted root store.

like image 30
Preet Sangha Avatar answered Oct 22 '22 06:10

Preet Sangha
Sign in to Comment

Related questions

Identity key on varchar column - T-SQL
design database relating to time attribute
Oracle equivalent to SQL function 'convert'
DB design help - EAV + Form builder
Requirement for a Master Key for Service Broker
Drop column and all dependent objects using data definition language
Is it possible to use $action of the MERGE statement in output variable of stored procedure?
database design for notification settings
T-SQL Fastforward Cursor vs. foreach
How do I join the results of two queries in SQL Server?
how to order 2 SQL Fields in asc and desc dynamically
Multiple SQL Counts in with multiple criteria
Is there a way to determine if a parameter in a stored proc has a default value (and thus not required) in code - .Net?
Parse Enum with FlagsAttribute to a SqlParameter
How to select all the columns for a user-defined type
Handling UTC time within C#?
ALTER vs DROP & CREATE in SQL Server
It is possible to alter SQL Server replication filter without delivering an entire publication snapshot?
SQL Server 2008: Is there any benefit to multiple filegroups on the same physical drive?
using temp tables in SQL Azure

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!