troubleshooting Question

Obtain a trusted certificate

Avatar of GoStream
GoStreamFlag for Ireland asked on
AWSMicrosoft ApplicationsWindows Server 2008Microsoft SQL Server 2008
2 Comments1 Solution113 ViewsLast Modified:
Hi,

I am trying to setup an encrypted connection between a
  • MS SQL server running on Windows 2008R2
  • Amazon Web Server running NGINX
 
but I have hit some road blocks.

I have found that the SQL service will not start, unless the certificate in use has been issued to the name of the server, which is unfortunate as the server FQDN is a .local domain, e.g. there is no option to obtain a trusted certificate that would contain a .local FQDN name as well. Only way to issue such a certificate is a local CA, but than such certificate wouldn’t be trusted externally.

In a windows based server, there are ways to “hack” the system to get it work (add the FQDN of the local server name with the public IP address, so that the server name can be resolved; add the local CA certificate to trusted CAs list on the web server, so that it trusts the certificates issued by it). But unfortunately, not sure if we have such options in AWS.

I was wondering if someone ever had faced such a scenario, and if you found any way to make it work?
ASKER CERTIFIED SOLUTION
Peter Hutchison
Senior Network Systems Specialist

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 2 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 2 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros