none
How to Verify if SSL Certificate connection to SQL Server is encrypted? RRS feed

  • Question

  • Hi,

    Does anyone know if I can verify connecting to SQL Server that has SSL Certificate enabled is encrypted? I tried this link and it shows me only connection to the server is either encrypted or not:
    https://www.sqlshack.com/how-to-set-and-use-encrypted-sql-server-connections/.

    I have run this script which says it is encrypted:

    SELECT encrypt_option FROM sys.dm_exec_connections 

    What I am looking for is that if there is any way I can insert date into a database and see the data is being encrypted from SQL Profiler.

    Thanks you in advance.


    IN~

    Thursday, February 15, 2018 4:29 PM

Answers

  • With protocol encryption, data sent over the wire is encrypted. A server side trace will show data in the clear.

    If you don't think the SQL Server DMVs are telling the truth, you could you could use a packet capture tool like Wireshark (https://www.wireshark.org/) to verify data are encrypted in transit.


    Dan Guzman, Data Platform MVP, http://www.dbdelta.com

    • Marked as answer by In-efficient Friday, February 16, 2018 4:16 PM
    Friday, February 16, 2018 1:22 AM
    Moderator

All replies

  • With protocol encryption, data sent over the wire is encrypted. A server side trace will show data in the clear.

    If you don't think the SQL Server DMVs are telling the truth, you could you could use a packet capture tool like Wireshark (https://www.wireshark.org/) to verify data are encrypted in transit.


    Dan Guzman, Data Platform MVP, http://www.dbdelta.com

    • Marked as answer by In-efficient Friday, February 16, 2018 4:16 PM
    Friday, February 16, 2018 1:22 AM
    Moderator
  • Thanks Dan for the suggestion.

    I tried to use both Wireshark and Microsoft Network Monitor; and I am able to see packets sent to the  encrypted server are encrypted and packets sent to the unencrypted server are not encrypted.


    IN~

    Friday, February 16, 2018 4:16 PM