Admin Console - TLS 1.1 / TLS 1.2 connections to SQL server


This article applies to:

  • Trustwave SEG Service Provider Edition
  • Microsoft SQL
  • TLS 1.1 and 1.2

Symptoms:

  • Enabling TLS v1.1/v1.2 only on the server running SQL, or
  • Turning off TLS v1.0 client settings on admin console serversĀ 
  • Error message:
    System Error
    Database could not be contacted
    Error Source: Microsoft OLEDB Provider for SQL Server
    Error Description: [DBNETLIB][ConnectionOpen (SECCreateCredentials()).]SSL Security error.

Resolution:

To resolve this issue:

  1. Download and install the latest Microsoft OLE DB Drivers for SQL Server from https://docs.microsoft.com/en-us/sql/connect/oledb/release-notes-for-oledb-driver-for-sql-server?view=sql-server-ver15 (64-bit)
  2. Edit the Registry and update the connection string for SPE:
    • Path: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Marshal\MailMarshalSPE
    • Value Name: DBConnection
    • Old Value: Provider=SQLOLEDB;Data Source=spedb;Initial Catalog=SPEConfiguration;User Id=xxxxxxxxxxxxxx;Password="xxxxxxxxxxxxxxxxxx";Network Library=dbmssocn
    • New Value: Provider=MSOLEDBSQL;Data Source=spedb;Initial Catalog=SPEConfiguration;User Id=xxxxxxxxxxxxxx;Password="xxxxxxxxxxxxxxxxxx";Network Library=dbmssocn
  3. Restart IIS

Last Modified 4/8/2020.
https://support.trustwave.com/kb/KnowledgebaseArticle21137.aspx