To authenticate database connections, your SQL Server must use a Fully Qualified
Domain Name (FQDN) certificate that is trusted by the machines that connect to the
database.
What you should know
Security Center database connections are
always encrypted, but not authenticated by default.
Procedure
-
In SQL Server Configuration Manager, expand SQL
Server Network Configuration, right-click Protocols for
<SQL_instance>, and select
Properties.
The Protocols for <SQL_instance> dialog box
opens.
-
Under the Certificate tab, select the required certificate
from the list and click OK.
-
Under Protocols for <SQL_instance>,
right-click TCP/IP, and select
Properties.
The TCP/IP Properties dialog box opens.
-
Under the Protocol tab, set Enabled
to Yes.
-
Under the IP Addresses tab, scroll down to
IPAll and set TCP Port to an allowed
value.
-
Click OK.
-
Restart the SQL Server service.
-
For the Directory role, do the following:
-
In Server Admin, open the main
server.
-
Under Directory, update Database
server with an FQDN and port.
The required format is:
<FQDN>,<PORT>\<SQL_instance>
-
Select Validate certificate.
-
Click Save.
The Directory is restarted before the changes take
effect.
-
For all other roles that connect to the database, do the following:
-
In Config Tool, open and select the role.
-
Click the Resources tab, and update
Database server with an FQDN and port.
The required format is:
<FQDN>,<PORT>\<SQL_instance>
-
Turn on the Validate certificate option.
-
Click Apply.