Configurable SQL Connection Strings

Keyfactor Command supports using a "templateClosed A certificate template defines the policies and rules that a CA uses when a request for a certificate is received." SQL connection string that can be created to fit the needs of the overall deployment. This template will be used as a starting point and will not be overwritten by the configuration wizard. For instance, you can set the timeout setting in one place, and once the configuration wizard is run, this is reflected in all places where a connection string is used. The template can be changed at any time to update the connection strings.

To create a customized connection string, after installing the Keyfactor Command software but before running the configuration wizard, modify both the EFModels and SqlDirect connection strings in the SharedSqlConnectionStrings.config file found in theConfiguration folder under your installation directory. By default, this is:

C:\Program Files\Keyfactor\Keyfactor Platform\Configuration

The settings that can be modified are described in the following Microsoft article:

https://docs.microsoft.com/en-us/dotnet/api/system.data.sqlclient.sqlconnection.connectionstring?view=dotnet-plat-ext-6.0
Note:   The Data Source, Initial Catalog, Integrated Security, User ID and Password settings are reserved for the configuration wizard to use to configure and save the authentication for the connection string, but other settings found in the template string are left as-is.

Figure 441: Default SQL Connection Strings

If you prefer to connect to your SQL server over a non-encrypted channel (and thus avoid configuring an SSLClosed TLS (Transport Layer Security) and its predecessor SSL (Secure Sockets Layer) are protocols for establishing authenticated and encrypted links between networked computers. certificate for your SQL server), you can use the Encrypt keyword in the connection strings with a value of False.

Figure 442: SQL Connection Strings with Encrypt Channel Disabled