Hi,
I'm trying to enable encrypted connection to the SQL Server 2008 R2. I have created a certificate from the Web Server template using the domain CA, used the local machine name as the Subject (CN=vm1.contoso.local) and used two alternative names (DNS=vm1.contoso.com and DNS=contosovm1.cloudapp.net). This certificate was shown in the SQL Server Configuration Manager and afer restarting the SQL Server service I was able to connect to the server using encrypted connection only using the vm1.contoso.local address.
When I try to connect to the server using other names (vm1.contoso.com or contosovm1.cloudapp.net) I will get this error in the SQL Management Studio:
A connection was successfully established with the server, but then an error occurred during the pre-login handshake. (provider: SSL Provider, error: 0 - The certificate's CN name does not match the passed value.) (Microsoft SQL Server, Error: -2146762481)
vm1.contoso.com is a CNAME for contosovm1.cloudapp.net
I was configuring the server and certificates using these articles and I double checked that the certificate meets requirements mentions in the Technet article:
http://technet.microsoft.com/en-us/library/ms189067(SQL.100).aspx
http://msdn.microsoft.com/en-us/library/jj823131.aspx
http://blogs.msdn.com/b/sqljourney/archive/2012/03/16/implementing-ssl-encryption-for-sql-server-in-a-dns-forwarding-environment.aspx
How can I troubleshoot this issue and get the encrypted connection working in SQL Server using certificate with SAN attributes?
-- Jozef Izso (MCPD)