SQL SERVER - Fix - Error - The certificate chain was issued by an authority that is not trusted - SQL Authority with Pinal Dave (2024)

FAQs

SQL SERVER - Fix - Error - The certificate chain was issued by an authority that is not trusted - SQL Authority with Pinal Dave? ›

The easiest solution is to append TrustServerCertificate=True to the SQL Server connection string in your ASP.NET Core application's configuration. This will tell the connection to trust the certificate presented by SQL Server without further verification.

The reason for the error is that SSL certificate used to encrypt the connection to the database is not trusted. There is an easy fix for this by adding TrustServerCertificate=True to the database connection string in your ASP.NET application.

To resolve the chain issue: Search your Certificate Authority's (CA) website to download their intermediate CA file. This file links all of the trusted CA certificates needed to reach the root certificate. When this Intermediate CA file has been downloaded, you must upload it to the LoadMaster.

In SQL Server Configuration Manager, in the console pane, expand SQL Server Network Configuration. Right-click Protocols for <instance Name>, and then select Properties. Select a certificate from the Certificate dropdown list, and then select Apply. Select OK.

First, check if the URL of the website begins with HTTPS, where S indicates it has an SSL certificate. Second, click on the padlock icon on the address bar to check all the detailed information related to the certificate.

To establish trust in the certificate chain, the web browser or client software relies on a list of trusted Root Certificate Authorities (Root CAs). These Root CAs are pre-installed in the operating system or browser and are considered inherently trusted.

How do I restore my certificate authority? ›

In the Certification Authority snap-in, right-click the CA name, click All Tasks, and then click Restore CA. The Certification Authority Restore Wizard starts. Click Next, and then click Issued certificate log and pending certificate request queue. Type the backup folder location, and then click Next.

A certificate chain is an ordered list of certificates, containing an SSL/TLS Certificate and Certificate Authority (CA) Certificates, that enables the receiver to verify that the sender and all CA's are trustworthy.

The easiest solution is to append TrustServerCertificate=True to the SQL Server connection string in your ASP.NET Core application's configuration. This will tell the connection to trust the certificate presented by SQL Server without further verification.

Open SQL Server Configuration Manager. Expand 'SQL Server Network Configuration' and right-click on 'Protocols for [Your Instance Name]'. Select 'Properties', then go to the 'Certificate' tab. Choose your certificate from the dropdown and click 'Apply'.

To identify if SQL SERVER database is SSL enabled or not, run the following query: "SELECT session_id, encrypt_option FROM sys. dm_exec_connections". It should be run by Database Administrator.

Various types of SSL certificate errors are like Revoked, Self-Signed & Expired. Additionally, untrusted SSL certificates can be handled using ChromeOptions(), FirefoxOptions() & EdgeOptions() in Chrome, Firefox & Edge browsers respectively.

The most common cause of a "certificate not trusted" error is that the certificate installation was not properly completed on the server (or servers) hosting the site. Use our SSL Certificate tester to check for this issue. In the tester, an incomplete installation shows one certificate file and a broken red chain.

You will need to remove a self-signed certificate from the server and install the one issued by the Certificate Authority. Note, when removing a self-signed SSL, please make sure to save the private key, since it will be required for the SSL installation.