Hello,
End user, a bank, is doing some penetration tests\vulnerability tests and they found some issues with certificates, and port 1433
They confirmed that the biggest problem is on port 1433. In the vulnerability test it tells me to focus on fall back i.e. sql expects a certificate in a path that is not there ‘‘Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft SQL Server\MSSQL16.MSSQLSERVER\MSSQLServer\SuperSocketNetLib’’
Any idea? or if I create a self signed certificate, would this be a problem in communication with Xprotect
I also found some certificates on VideoOSserver…is it possible to delete them? Some of them seems to be from older versions of Xprotect
How to do the best hardening, cleaning the certificates, without affecting the functioning of the system?
thanks