Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Configuration for Encrypted Connections #37

Open
montge opened this issue Feb 21, 2017 · 8 comments
Open

Configuration for Encrypted Connections #37

montge opened this issue Feb 21, 2017 · 8 comments
Labels
mssql-server-linux mssql-server-windows

Comments

@montge
Copy link

montge commented Feb 21, 2017

Request that linux and windows based images be updated to allow encryption of the connection. Ideally this would allow us to provide PEM files (or whatever format required) as a input which then would get loaded. This would help address the challenge of ensuring developers know how to make sure their application can utilize encryption which is a common challenge in many organizations.
@Koubek
Copy link

Koubek commented May 17, 2017

This is not possible? I am just asking because we use it from MS Dynamics NAV containers in case of using SQL connection. We use proprietary one NAV PowerShell function that uploads a key and configures everything needed on both sides. So I suppose this could be pretty possible, isn`t it?

@tmullaney
Copy link

We're working on enabling customers to configure TLS settings for SQL Server on Linux using mssql-conf. This includes specifying which certificate to use (e.g. a PEM file), which protocols (e.g. TLS 1.2), and whether all connections should be forced to use encryption. With luck, this should be available next month.

In the meantime, if a client specifies "Encrypt=True" (or whatever the appropriate keyword is for the driver being used) in the connection string, SQL Server will encrypt the connection using a self-signed certificate.

@neilhwatson
Copy link

Still open nearly 2 years later.

@twright-msft
Copy link
Collaborator

TLS settings can be set via mssql-conf on start up or via the mssql.conf file. I'm checking to see if we also can handle these settings via environment variables...

mssql-conf:
https://docs.microsoft.com/en-us/sql/linux/sql-server-linux-configure-mssql-conf?view=sql-server-2017#tls

@aaronjedwards
Copy link

@twright-msft @tmullaney is there any news on this? is it possible now to specify a custom certificate through mssql-conf? and if so is there any example of how to do this?

@callalilyz
Copy link

any update on this issue ?

@pimeys pimeys mentioned this issue Aug 31, 2020
Closed
@pimeys
Copy link

pimeys commented Sep 4, 2020

Is there a way to get this docker image working with TLS on Catalina? I've heard problems with Azure SQL too, where the certificate is not accepted by Apple...

@vitalyisaev2
Copy link

7 years since this issue was opened. Please provide a clear manual of configuring TLS connections with the custom certificates.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
mssql-server-linux mssql-server-windows
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
10 participants
@pimeys @montge @neilhwatson @vitalyisaev2 @perrysk-msft @tmullaney @twright-msft @aaronjedwards @Koubek @callalilyz