Enabling SQL Server Encryption

This topic only applies to Secret Server On-Premises.

Administrators can enable end-to-end encryption with the SQL database by using an Encrypted connection. This is a feature that is built into Microsoft SQL Server and Secret Server supports. To enable encryption:

  1. Go to Admin > See All. The admin panel appears.

  2. Type Database in the Search text box and select Database. The Database Configuration page appears:

    image-20200616151810093

  3. Click the Edit button.

  4. Click the Advanced (Not Required) link. A new section appears:

    image-20200616152210555

  5. Click to select the SSL Encryption check box.

  6. Click the Save Database Connection Settings button.

SQL Server must be pre-configured to support encryption. This Microsoft TechNet article explains how to configure the SQL Server environment for encryption. The SSL encryption used for communicating with SQL Server is either 40 or 128 bit, depending on the Windows operating system used.
Using this setting can adversely affect performance. See this TechNet article for additional information.