SQL Server IaaS Certificate Question

Question

Hello
I would like to implement the SSL for SQL Server running on Azure VM..I would like to know if i can purchase the SSL/TSL Certificate from the "Azure App service Certificate" or i have to purchase it from the 3rd party providers?.
trying to find out the best way to manage it.

Thanks

Answer 1

Good day,

SQL Database, SQL Managed Instance, and Azure Synapse Analytics secure customer data by encrypting data in motion with Transport Layer Security (TLS). These services enforce encryption (SSL/TLS) at all times for all connections - you cannot connect the services without encryption like in the case of SQL Server on-premises.

By the way, Secure Sockets Layer (SSL) is deprecated and you should not use it - it does not considered as secure. You should use TLS 1.2 or TLS 1.3. Using Azure SQL Server you should go to the firewall configuration and configure to use at least TLS 1.2 (there is no option in the portal to configure using 1.3 yet.

Answer 2

just to further clarify the question, I am using SQL Server on Virtual Machine. in that case, can i use "Azure App service Certificate" service to procure the certificate for my SQL Server?

Thanks
KKD

Answer 3

Hi,

I am using SQL Server on Virtual Machine.

Seems like I did not read your question well since all what I wrote is NOT relevant to SQL Server on Virtual Machine, but to managed services (as I mentioned) like SQL Database, SQL Managed Instance, and Azure Synapse.

Sorry for this :-)

So, back to your original questions

I would like to know if i can purchase the SSL/TSL Certificate from the "Azure App service Certificate" or i have to purchase it from the 3rd party providers?.

Please check if this document help you in the process:
https://learn.microsoft.com/en-us/azure/virtual-machines/windows/tutorial-secure-web-server