无法在仅具有 TLS 1.3 的系统上启动 SQL Server 2022

无法在仅具有 TLS 1.3 的系统上启动 SQL Server 2022

从文档来看,SQL Server 2022 应该支持 TLS 1.3:

当使用 TDS 8.0 时,SQL Server 2022 (16.x) 支持传输层安全性 (TLS) 1.3。关联

但是,当我尝试在仅启用了 TLS 1.3 的 Windows Server 2022 上启动服务时(我已禁用 TLS 1.2 及更早的协议),服务器将无法启动。我在事件日志中看到以下错误:

SQL Server could not spawn FRunCommunicationsManager thread. Check the SQL Server error log and the operating system error log for information about possible related problems.
Could not start the network library because of an internal error in the network library. To determine the cause, review the errors immediately preceding this one in the error log.
TDSSNIClient initialization failed with error 0x139f, status code 0x1. Reason: Initialization failed with an infrastructure error. Check for previous errors. The group or resource is not in the correct state to perform the requested operation. 
TDSSNIClient initialization failed with error 0x139f, status code 0x80. Reason: Unable to initialize SSL support. The group or resource is not in the correct state to perform the requested operation. 
The server was unable to initialize encryption because of a problem with a security library. The security library may be missing. Verify that security.dll exists on the system.

在早期版本的 Windows Server 中,TLS 1.2 存在类似问题,该问题已通过补丁修复。SQL Server 2022 和 TLS 1.3 有类似问题吗?或者无论如何都应该启用 TLS 1.2。

答案1

因此,对于 MS - 启动 SQL Server 卫星服务需要 TLS 1.2。他们建议在您的服务器上保持启用 TLS 1.2。请注意这篇文章: TLS 1.3 支持 - SQL Server | Microsoft 学习

以下是屏幕截图:

TLS 1.3 建议

相关内容