| author | rwestMSFT |
|---|---|
| ms.author | randolphwest |
| ms.date | 05/07/2026 |
| ms.service | sql |
| ms.subservice | configuration |
| ms.topic | include |
Applies to: [!INCLUDE ssnoversion-md]
To enhance security when you use Windows authentication, set Extended Protection to Required and Force Encryption to Yes in SQL Server Configuration Manager.
These settings provide the most secure configuration for [!INCLUDE ssnoversion-md].
Note
In [!INCLUDE sssql22-md] and later versions, use Force Strict Encryption instead of Force Encryption to enable stronger security via TDS 8.0.
Update your connection strings to accommodate these changes.
For more information, see: