SQL Server 2008 R2, Force Encryption is ON, Extended Protection for Authentication is REQUIRED, the service SPN is defined successfully.
when I try to connect with SSMS using my Windows creds, I receive this channel binding error:
SSPI handshake failed with error code 0x80090346, state 46 while establishing a connection with integrated security; the connection has been closed. Reason: The Channel Bindings from this client are missing or do not match the established Transport Layer
Security (TLS) Channel. The service might be under attack, or the data provider or client operating system might need to be upgraded to support Extended Protection. Closing the connection.
If force encryption is set to OFF, the connection succeeds.
When the extended protection for authentication was set to required, only connections from protected applications on protected operating systems are accepted. This setting is the most secure but connections from operating systems or applications
that do not support Extended Protection will not be able to connect to SQL Server.