![]() You should verify that the certificate is correctly installed. 18:05:36.08 spid10s Unable to load user-specified certificate. Check certificates to make sure they are valid. It returned the following error: 0x8009030d. 18:05:36.08 spid10s The server could not load the certificate it needs to initiate an SSL connection. Thirdly, please check that if you have enabled SSL encryption for an instance of SQL Server correctly by reviewing this article: Server Service has the permission to read this certificate by using the following steps:ġ.Find the folder where the certificate is stored, and right click on this folder and select Properties, then check if the account of SQL Server Service is inside the Security tab.Ģ.Open the Microsoft Management Console by click Start -> Run, entering mmc and pressing Enter.ģ.Add the Certificates snap-in by clicking File -> Add/Remove Snap-in… and double clicking the Certificates item.Ĥ.Expand Certificates (Local Computer) -> Personal -> Certificates and find the SSL certificate you imported.ĥ.Right click on the imported certificate (the one you selected in the SQL Server Configuration Manager) and click All Tasks -> Manage Private Keys…Ħ.Click the Add… button under the Group or user names list box, then enter the SQL service account name and click OK. ![]() Usually, the certificate's key usage property (KEY_USAGE) will also include key encipherment (CERT_KEY_ENCIPHERMENT_KEY_USAGE).īesides, if this problem is caused in the second scenario, you can open SQL Server Configuration Manager, find the SQL Server Service, right click and select Properties, then you can get the account of SQL Server Service. This requires the Enhanced Key Usage property of the certificate to specify Server Authentication (1.3.6.1.5.5.7.3.1).Ĥ.The certificate must be created by using the KeySpec option of AT_KEYEXCHANGE. Secondly, according to your description, the first reason is more likely causing this problem, you can create the certificate for SSL meeting the following requirements:ġ.The certificate must be in either the local computer certificate store or the current user certificate store.Ģ.The current system time must be after the Valid from property of the certificate and before the Valid to property of the certificate.ģ.The certificate must be meant for server authentication. ’, this issue can be caused in the following scenarios:ġ.The certificate may have expired or did not meet the requirements.Ģ.If the account of SQL Server Service has changed, SQL Server Service may not have permission to access the certificate. #Install spiceworks sql server fullFirstly, could you please share the full error message to us for analysis? You can find it from ‘Program Files\Microsoft SQL Server\MSSQL13.****\MSSQL\LOG’.īased on the message ‘Unable to load user-specified certificate.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |