Solved

How to determine if port 1433 is using ssl

Posted on 2010-09-14
7
1,895 Views
Last Modified: 2012-05-10
Hello,

I'm relatively new to SQL Server.  How do I determine if a port, in particular is using SSL.
0
Comment
Question by:chtullu135
  • 4
  • 2
7 Comments
 
LVL 22

Accepted Solution

by:
Matt V earned 500 total points
ID: 33676449
First, I would check the configuration on the listener using that port to see if it is setup to use SSL.
Another round-about way is to use a packet sniffer (Wireshark or MS Network Monitor) and capture some traffic on that port.  If you can see the plain text, it is not using SSL.
0
 

Author Comment

by:chtullu135
ID: 33676734
<First, I would check the configuration on the listener using that port to see if it is setup to use SSL.

How would you do that
0
 
LVL 22

Expert Comment

by:Matt V
ID: 33677076
In the SQL Server Configuration Manager usually, unless this is SQL Xpress
0
Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

 

Author Comment

by:chtullu135
ID: 33677533
Where in the SQL Server Configuration Manager
0
 
LVL 22

Expert Comment

by:Matt V
ID: 33678038

To verify the port configuration of an instance of SQL Server, follow these steps:

   1. Start Registry Editor.
   2. In Registry Editor, locate the following registry key:
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft SQL Server\<InstanceName>\MSSQLServer\SuperSocketNetLib\Tcp
      Note If you are using SQL Server 2005, locate the following registry subkey:
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft SQL Server\<MSSQL.x>\MSSQLServer\SuperSocketNetLib\Tcp\IPAll
      Notice the TCPDynamicPorts value and the TCPPort value. These values appear as follows, depending on your port allocation method:
          * Static Port Allocation
            If you configure an instance of SQL Server to use a static port, and you have not yet restarted the instance of SQL Server, the registry values are set as follows:
            TCPDynamicPorts = Last port used
            TCPPort = New static port to be used after the next restart; new static port that you set by using the Server Network Utility
            However, if you configure an instance of SQL Server to use a static port, and you restart the instance of SQL Server, the registry values are set as follows:
            TCPDynamicPorts = Blank
            TCPPort = New static port that you set by using the Server Network Utility
          * Dynamic Port Allocation
            If you configure an instance of SQL Server to use dynamic port allocation, and you have not yet restarted the instance of SQL Server, the registry values are set as follows:
            TCPDynamicPorts = Blank
            TCPPort = 0
            However, if you configure an instance of SQL Server to use dynamic port allocation, and you restart the instance of SQL Server, the registry values are set as follows:
            TCPDynamicPorts = Current port used
            TCPPort = Current port used
0
 
LVL 22

Expert Comment

by:Matt V
ID: 33678045
Also refer to this article, port 443 is for SSL connections.

http://www.experts-exchange.com/Microsoft/Applications/Q_23935908.html
0
 
LVL 57

Expert Comment

by:Raja Jegan R
ID: 33679141
You have to use a Network Monitoring tool like Microsoft Network Monitor or Network sniffer to check whether SSL is enabled for your connection.

If you are connecting SQL Server from the application, then check in the connection credentials whether Encryption is enabled or not.
More info below:

http://support.microsoft.com/kb/316898
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Join & Write a Comment

Suggested Solutions

There have been several questions about Large Transaction Log Files in SQL Server 2008, and how to get rid of them when disk space has become critical. This article will explain how to disable full recovery and implement simple recovery that carries…
Ever needed a SQL 2008 Database replicated/mirrored/log shipped on another server but you can't take the downtime inflicted by initial snapshot or disconnect while T-logs are restored or mirror applied? You can use SQL Server Initialize from Backup…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now