https://github.com/rgl/dump-sql-server-certificate-chain

a tool for dumping a given SQL Server certificate chain into local files
https://github.com/rgl/dump-sql-server-certificate-chain

sql-server tls troubleshooting

Last synced: about 2 months ago
JSON representation

a tool for dumping a given SQL Server certificate chain into local files

• Host: GitHub
• URL: https://github.com/rgl/dump-sql-server-certificate-chain
• Owner: rgl
• Created: 2017-05-18T19:29:29.000Z (over 7 years ago)
• Default Branch: master
• Last Pushed: 2020-08-17T22:19:53.000Z (over 4 years ago)
• Last Synced: 2024-10-05T18:21:58.240Z (4 months ago)
• Topics: sql-server, tls, troubleshooting
• Language: Go
• Size: 3.91 KB
• Stars: 1
• Watchers: 2
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
# About

This is a tool for dumping a given SQL Server certificate chain into local files.

The encrypted SQL Server Tabular Data Stream (TDS) protocol works above, with the exception of the first pre-login message, a standard TLS layer. But because of that initial message we cannot use regular tools (e.g. `openssl s_client`) to troubleshoot certificate issues, hence this tool exists.

This tool uses a [modified version](https://github.com/rgl/dump-sql-server-certificate-chain-go-mssqldb) of the [denisenkom/go-mssqldb](https://github.com/denisenkom/go-mssqldb) driver.

# Build

Setup the Go workspace:

	mkdir -p dump-sql-server-certificate-chain/src/github.com/rgl/dump-sql-server-certificate-chain

	cd dump-sql-server-certificate-chain

	git clone --recursive https://github.com/rgl/dump-sql-server-certificate-chain src/github.com/rgl/dump-sql-server-certificate-chain

	export GOPATH=$PWD

	export PATH=$PWD/bin:$PATH

	hash -r # reset bash path

Build:

	cd src/github.com/rgl/dump-sql-server-certificate-chain

	go get

	go build

Execute:

    ./dump-sql-server-certificate-chain -server sql.example.com

List the dumped chain certificates:

    ls -l *.der