Hello NG,
we just installed a ssl-certificate (created with MS-selfssl) on the IIS of
a win2k-Server and since reboot the SQL-Server on the same machine cannot be
accessed anymore. The Enterprise Manager tells us "SSL Security Error.
ConnectionOpen (SECDoClientHandshake()).."
Meanwhile we deleted the certificate, but the server's still locked. What
can we do?
Greatful for any hint,
MarcMake sure that the "force Protocol encryption" option is removed from both
the
Server Network Utility and the CLient network Utility.
Once you remove the certificate, SQL must be restarted. Just MSSQLServer
service, not the machine.
Thanks,
Kevin McDonnell
Microsoft Corporation
This posting is provided AS IS with no warranties, and confers no rights.|||Thanks Kevin,
But how can we modify the Database's options? They're locked as well.
Are there some command line options? How are they applied?
thanks,
Marc
"Kevin McDonnell [MSFT]" <kevmc@.online.microsoft.com> schrieb im Newsbei
trag
news:BtG697KIEHA.3772@.cpmsftngxa06.phx.gbl...
> Make sure that the "force Protocol encryption" option is removed from both
> the
> Server Network Utility and the CLient network Utility.
> Once you remove the certificate, SQL must be restarted. Just MSSQLServer
> service, not the machine.
>
> Thanks,
> Kevin McDonnell
> Microsoft Corporation
> This posting is provided AS IS with no warranties, and confers no rights.
>
>|||There are no database options that relate to protocol encryption.
Does the server start?
Is the problem only establishing connections from Enterprise Manager?
Thanks,
Kevin McDonnell
Microsoft Corporation
This posting is provided AS IS with no warranties, and confers no rights.|||Meanwhile I checked the two services : "force Protocol encryption" had
already been deactivated for both active protocols (Named Pipes and TCP/IP).
Before, we also removed the certificate. Nothing happened. The SQL-Server is
still locked.
General question : how can we use a ssl-certificate for the web-service
together with a SQL-Server on the same machine? As far as I experienced now,
this is a dangerous experiment if no real MS-Experts are around!? Are there
manuals available?
Still greatful for any hint,
Marc
"Kevin McDonnell [MSFT]" <kevmc@.online.microsoft.com> schrieb im Newsbei
trag
news:BtG697KIEHA.3772@.cpmsftngxa06.phx.gbl...
> Make sure that the "force Protocol encryption" option is removed from both
> the
> Server Network Utility and the CLient network Utility.
> Once you remove the certificate, SQL must be restarted. Just MSSQLServer
> service, not the machine.
>
> Thanks,
> Kevin McDonnell
> Microsoft Corporation
> This posting is provided AS IS with no warranties, and confers no rights.
>
>|||> There are no database options that relate to protocol encryption.
My mistake/misunderstanding - sorry!
> Does the server start?
It looks like. The green arrow shows up.
> Is the problem only establishing connections from Enterprise Manager?
No - all connections (ODBC, MS-Access).
Marc
> Thanks,
> Kevin McDonnell
> Microsoft Corporation
> This posting is provided AS IS with no warranties, and confers no rights.
>
>|||From previous post:
"General question : how can we use a ssl-certificate for the web-service
together with a SQL-Server on the same machine? As far as I experienced now,
this is a dangerous experiment if no real MS-Experts are around!? Are there
manuals available?"
For SQL 2000 to use protocol encryption, SSL, the server must have a
Certificate issued to the FQDN name of the computer.
This would be the same if you were to setup IIS for SSL using Server
Authentication. So, if IIS and SQL are on the same machine,
then you just need one certificate. You can use the IIS tools to install
the certificate, since SQL doesn't supply any user tools.
I wrote the following two articles. and did the Webcast on setting up SSL
with SQL 2000.
316898 HOW TO: Enable SSL Encryption for SQL Server 2000 with Microsoft
http://support.microsoft.com/?id=316898
276553 HOW TO: Enable SSL Encryption for SQL Server 2000 with Certificate
Server
http://support.microsoft.com/?id=276553
324777 Support WebCast: Microsoft SQL Server 2000: How to Configure SSL
http://support.microsoft.com/?id=324777
Hope this helps,
Kevin McDonnell
Microsoft Corporation
This posting is provided AS IS with no warranties, and confers no rights.|||I just replied to your earlier posting.
Thanks,
Kevin McDonnell
Microsoft Corporation
This posting is provided AS IS with no warranties, and confers no rights.|||> I wrote the following two articles. and did the Webcast on setting up SSL
> with SQL 2000.
> 316898 HOW TO: Enable SSL Encryption for SQL Server 2000 with Microsoft
> http://support.microsoft.com/?id=316898
Through this article I found that the certificate had not been deleted
completely. So I deleted the rest, rebooted and had the database back!
Thanks for the Article!
We installed SP3 meanwhile and we still intend to use SSL, se we keep on
experimenting and I hope that the articles will guide us safely ...
Thanks again,
Marc|||Does anyone have any idea how or why this is happening to me all of a
sudden and what to do about it?
Win2000 Server, with SQL Server 2000, IIS, Been running applications and
SQL just fine for a long time and all of a sudden now getting this error
constantly:
[DBNETLIB][ConnectionOpen (SECCreateCredentials()).]SSL Security err
or.
ANY help would be greatly appreciated. I cannot find anything on the
net about this.
JWP
*** Sent via Developersdex http://www.codecomments.com ***
Don't just participate in USENET...get rewarded for it!
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment