Friday, March 9, 2012

Does Force Protocol Encryption on Server Require Certificate to be Installed on Client

So I was able to enable the option to Force Protocol Encryption using
SQL. However, I was still able to connect to this instance of SQL
using the Query Analyzer tool from a machine without the certificate
(public key) installed.
This leads me to believe that the client connected to the server w/out
encrypting communications or that the client doesnt require a
certificate in order to connect (encrypted) to the instance of SQL now
configured to force protocol encryption. As a result, I have the
following question.
Once protocol encryption is enabled on the server using the SQL Server
Network Utility, must the certificate (public key) be installed on the
client in order to access SQL on the server (now configured to force
protocol encryption)?
What does it mean when I connect to the instance of SQL from a machine
w/out the certificate? How is this working? Are communications still
encrypted from client to server?
Thanks in advance for any help/direction.If found a good article.
NetHT19.asp" target="_blank">http://msdn.microsoft.com/library/d.../>
NetHT19.asp
"Note that, in all cases, SQL Server sends its server authentication
certificate in the clear to the client at the beginning of the
communication sequence. This is part of the SSL protocol. Note that
this occurs even when neither the server nor the client requires
encryption."
nasteric@.yahoo.com (nasteric) wrote in message news:<e651d8ae.0406012052.5e1c2f41@.posting.go
ogle.com>...
> So I was able to enable the option to Force Protocol Encryption using
> SQL. However, I was still able to connect to this instance of SQL
> using the Query Analyzer tool from a machine without the certificate
> (public key) installed.
> This leads me to believe that the client connected to the server w/out
> encrypting communications or that the client doesnt require a
> certificate in order to connect (encrypted) to the instance of SQL now
> configured to force protocol encryption. As a result, I have the
> following question.
> Once protocol encryption is enabled on the server using the SQL Server
> Network Utility, must the certificate (public key) be installed on the
> client in order to access SQL on the server (now configured to force
> protocol encryption)?
> What does it mean when I connect to the instance of SQL from a machine
> w/out the certificate? How is this working? Are communications still
> encrypted from client to server?
> Thanks in advance for any help/direction.
Posted by pro at 1:32 AM
Labels: , , , , , , , , , , , , , , , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)