stackoom
  简体   繁体   中英

PYODBC + MS SQL SERVER connection with Encrypt=yes not connecting

 原文  2020-06-15 14:25:52       python/ sql-server/ sqlalchemy/ odbc/ pyodbc

Question

We have a python flask app running on an aws centos ECS instance. We are trying to establish an encrypted connection to our database via PYODBC with odbc 17 on Linux. When running locally we just use the SQL server driver. Currently we have the code:

params = urllib.parse.quote_plus(driver;server;user;pwd;...;Encrypt=yes)

SQLALCHEMY_DATABASE_URI="mssql+PYODBC:///?odbc_connect=%s" %params

We have tls enabled on the server. The connection works locally on windows but not deployed in Linux. Currently doing a deployment with 'yes' instead of 'true'. We are also about to try with 'trustedserverconnection=yes'. Any insight on this process would be greatly appreciated!

Update: latest error, invalid connection string attribute 'trustservercertificate'

2 answers

solution1
 1 ACCPTED  2020-06-18 14:39:21

We ended up implementing a second connection param:

TrustServerCertificate=YES

Which is not ideal, obviously, because we want to have good security implementation practices. In future state we will need to set this to false and put our ssl pem file in the Linux ssl store.

Hope this helps someone. Had some issues finding documentation for pyodbc with MS SQL Server.

solution2
 0  2021-07-23 21:48:41

According to this documentation , pyodbc passes the connection string through to the underlying ODBC driver. Microsoft's article Using Connection String Keywords with SQL Server Native Client documents both the Encrypt and TrustServerCertificate attributes. The TrustServerCertificate setting should generally be avoided in production databases; however, it is very useful when testing encrypted connections to a development database that is using a self-signed certificate. For example, the default installation of SQL Server uses a self-signed certificate and will require this setting.

In my mssql+pyodbc connection strings I just append ?Encrypt=yes&TrustServerCertificate=yes as appropriate. Please note, if you already have another setting after a question mark ? then use & instead of ? , for example: ?Trusted_Connection=yes&Encrypt=yes&TrustServerCertificate=yes

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Double backslash in connection string when connecting to SQL Server with pyodbc in Jupyter pyodbc connection to MS SQL Server running on a docker container Segfault on 2nd connection with pyodbc to mirrored MS SQL Server SQLAlchemy PyODBC MS SQL Server DSN-less connection Connecting to SQL server using PYODBC Connecting to MS Access with pyodbc Remote connection to MS SQL - Error using pyodbc vs success using SQL Server Management Studio Connecting to SQL Server 2012 using sqlalchemy and pyodbc Connecting to SQL Server named instance from Linux using pyodbc Connecting to Microsoft SQL Server through pyODBC on Ubuntu
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM