20,214 questions
most likely your sqlserver does not have a trusted certificate. so you need to add
trustServerCertificate=true
to the connection string
I have SQL 2016 server and if I enabled TLS1.2 then I am not able to connect to dB seever.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 38%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
Jaykumar
1
Reputation point
I have SQL 2016 server and OS windows server 2016 and if I enabled TLS1.2 on dB server then I am not able to connect to dB seever from application server .I was received SSL related error.What are thing I need to update in my application server and database server
Windows for business | Windows Server | User experience | Other
SQL Server | Other
14,501 questions
{count} votes
-
Erland Sommarskog 121.9K Reputation points MVP Volunteer Moderator2023-01-21T11:53:58.9066667+00:00 I guess you need to enable TLS 1.2 on the application server as well. What OS is the application server running? What platform is it running on? IIS or something else?
-
Jaykumar 1 Reputation point
2023-01-21T12:05:50.25+00:00 I have enabled TLS 1.2 on app server also.OS 2016.Web service running on IIS
-
Erland Sommarskog 121.9K Reputation points MVP Volunteer Moderator
2023-01-21T12:14:49.03+00:00 And the exact error message is? Maybe there is something you need to enable for IIS as well? (I'm an SQL Server person, and don't know that much about IIS.)
The reason I'm asking these questions is that the more accurate information you share, the easier it will be for people to help you.
-
Jaykumar 1 Reputation point
2023-01-21T12:29:00.9933333+00:00 [DBNETLIB][ConnectionOpen (SECCreateCredentials()).]SSL Security error this error comming
-
Erland Sommarskog 121.9K Reputation points MVP Volunteer Moderator
2023-01-21T13:11:43.8966667+00:00 And what clientAPI are you using? What does not your connection string look like?
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 2%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESX%3C/text%3E%3C/svg%3E)
Seeya Xi-MSFT 16,586 Reputation points2023-01-24T06:06:55.7166667+00:00 Hi Jbowy,
We have not received a response from you. Did the reply could help you? If the response helped, do "Accept Answer". If it doesn't work, please let us know the progress. By doing so, it will benefit all community members who are having this similar issue. Your contribution is highly appreciated.
Best regards,
Seeya
-
Jaykumar 1 Reputation point
2023-01-25T14:00:55.5+00:00 Asp.net and currently using sqloledb
Sign in to comment
3 answers
Sort by: Most helpful
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 61%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBS%3C/text%3E%3C/svg%3E)
Bruce (SqlWork.com) 78,006 Reputation points Volunteer Moderator2023-01-21T19:47:12.15+00:00 -
Erland Sommarskog 121.9K Reputation points MVP Volunteer Moderator
2023-01-21T22:40:05.94+00:00 Maybe, but that is not dependent on TLS levels. Rather that depends on whether you have Encrypt option, and whether you are running the very latest drivers.
Sign in to comment -
-
Seeya Xi-MSFT 16,586 Reputation points
2023-01-23T06:21:00.9033333+00:00 Hi Jbowy,
[DBNETLIB][ConnectionOpen (SECCreateCredentials()).]SSL Security error this error comming
This is due to the SQLOLEDB provider not supporting TLS 1.2. If TLS 1.0 and TLS 1.1 are not present or enabled on the server it will break the provider's function, causing an error to appear.
Please refer to this thread: https://knowledge.broadcom.com/external/article/225667/connector-solution-user-rule-import-is-f.html
Please download Microsoft® OLE DB Driver 18 for SQL Server® to your server which features backwards compatibility with SQLOLEDB and can be used as a replacement. Then change the connection string provider from SQLOLEDB to MSOLEDBSQL and recycle the site's application pool.
For more detailed screenshots, you can go to the link above to check it out.
Best regards,
Seeya
If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
-
Jaykumar 1 Reputation point
2023-01-25T14:03:24.3266667+00:00 You mean to web server i need to install new driver to support MSOLEDBSQL
-
Seeya Xi-MSFT 16,586 Reputation points
2023-01-27T01:59:14.5966667+00:00
Sign in to comment -
-
Erland Sommarskog 121.9K Reputation points MVP Volunteer Moderator
2023-01-25T22:10:01.1333333+00:00 Asp.net and currently using sqloledb
That's a very old provider (20+ years). It ships with the OS, but you should use MSOLEDBSQL19, which is the most recent provider. This may give you new problems, since MSOLEDBSQL19 defaults to requiring encryption by a trusted server certificate.
-
Jaykumar 1 Reputation point
2023-01-26T13:30:24.1733333+00:00 In order to use MSOLEDB provider name .I need to install latest OLE DB provider on web swever.correct?
-
Jaykumar 1 Reputation point
2023-01-26T13:40:59.32+00:00 One more thing is that. Why it does not come with Windows server OS
-
Erland Sommarskog 121.9K Reputation points MVP Volunteer Moderator
2023-01-26T22:23:51.6166667+00:00 Yes, you need to install it on the web server.
The reason it does not come with the OS is that the drivers are updated out of band with the OS. They did include the drivers once with the MDAC in the early naughties, but I think that they regret that they ever did.
-
Jaykumar 1 Reputation point
2023-01-28T06:59:10.62+00:00 Thanks for the information.It will help me in my work.
Sign in to comment -