I have a server running MS Sql 2019 Std.I have configured MS SQL to use SSL. I have a cert from entrust that when I scan with Nmap --script ssl-enum-ciphers fqdn does not show the TLS version for port 1433. If I switch the cert for MS SQL to one that was issued by our internal CA to use for RDP the scan shows the TLS versions for port 1433. Any suggestions are greatly appreciated.
Asked
Active
Viewed 603 times
0
-
My guess would be the Entrust issued certificate is not working/not trusted. – Greg Askew Jul 25 '22 at 12:59
-
I can enumerate the certificate suing this python command: python3 get_tds_cert.py fqdn 1433. – lee_in_wv Jul 26 '22 at 10:29
-
I have installed IIS and created a binding with the cert and it will show the TLS version using Nmap on port 443. Very strange issue. – lee_in_wv Jul 26 '22 at 13:24