Re: Certificate Requirements for SQL Data Encryption

Hi Jediah,
I recommend that you directly give Microsoft feedback at the bottom of this
article:
CREATE CERTIFICATE (Transact-SQL)
http://msdn.microsoft.com/en-us/library/ms187798.aspx

Appreciate your understanding that the documents are huge and it is very
hard to cover every aspect when we initially release them. Your feedback
will help us enrich our contents and have them become more helpful.

Regarding your non-working certificate, based on my current test, I could
not reproduce your issue at my side. I used a certificate from my
Certificate Authority, however I noticed that you said "So far I have tried
issuing from the user template and the computer template. For the user and
computer templates I have tried various different options: including and
not including Client Authentication, and Server Authentication in the
Application Policy extension, I have tried changing the purpose from
encryption to signature to signature and encryption, I have set the key
usage to various values (Digital Signature, Key exchange, etc)." , it
seemed not from CA, could you please elaborate this phase and your process
to load a certificate in SQL Server 2005 so that I can perform further
checking?


Best regards,
Charles Wang
Microsoft Online Community Support
=========================================================
Delighting our customers is our #1 priority. We welcome your
comments and suggestions about how we can improve the
support we provide to you. Please feel free to let my manager
know what you think of the level of service provided. You can
send feedback directly to my manager at: msdnmg@xxxxxxxxxxxxxx
=========================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
=========================================================




.

Relevant Pages

  • SSL Diagnostics: Beta 2 (I386 Only)
    ... The purpose of this email is to solicit users of IIS to test and provide ... feedback regarding a tool that the Microsoft IIS team is producing. ... tool, SSL Diagnostics, is currently being released as beta 2. ... Check the following for each certificate: ...
    (microsoft.public.inetserver.iis.security)
  • Re: Public/Private key pair protection on Windows
    ... Thx for all the feedback! ... I'd also like to how how OS knows that a private key is associated ... corresponds to thise certificate". ...
    (alt.computer.security)
  • Re: Soft signatures
    ... now, digital signature, typically just represents that you (in ... For some time there were arguments that if a certificate contained the ... certificate with your public key and the non-repudiation flag in it. ... for a number of different business purposes. ...
    (sci.crypt)
  • Re: electronic signature in Microsoft Word
    ... you need a digital certificate. ... status bar with a tooltip that says "This document has been digitally ... Double-clicking the icon opens the Digital Signature dialog again. ... but be asked for a password before inserting ...
    (microsoft.public.word.docmanagement)
  • Re: Verifying a Signed Executable before running it on a remote machine.
    ... At the very top of the Digital Signature Details property dialog I see ... If I had hacked a certificate generator and entered your name ... Is there a way to verify the actual root ... > Therefore, technically, the signature and cert (according to default Microsoft Authenticode ...
    (microsoft.public.platformsdk.security)