Attribute

EncryptionMethod (EM)

Purpose

The method the driver uses to encrypt data sent between the driver and the database server. It supports the RequestSSL functionality. When RequestSSL is enabled, login requests and data are encrypted if the server is configured for SSL. If the server is not configured for SSL, an unencrypted connection is established.

Valid Values

0 | 1 | 6

Behavior

If set to 0 (No Encryption), data is not encrypted.

If set to 1 (SSL), data is encrypted using the SSL protocols specified in the Crypto Protocol Version connection option. If the specified encryption method is not supported by the database server, the connection fails and the driver returns an error.

If set to 6 (RequestSSL), the login request and data are encrypted using SSL if the server is configured for SSL. If the server is not configured for SSL, an unencrypted connection is established. The SSL protocol used is determined by the setting of the Crypto Protocol Version connection option.

Notes

• TLS/SSL encryption is automatically enabled for certain authentication methods, such as Entra ID authentication (AuthenticationMethod=13 | 36). When authentication methods that require TLS/SSL encryption are used, the value specified for this option is ignored.
• For values 1 and 6, the SSL protocol used is determined by the setting of the Crypto Protocol Version connection option.
• This connection option can affect performance.
• When using FIPS and default providers, the certificates must be generated using the OpenSSL 3.5-compliant cryptographic algorithms.

Default

0 (No Encryption)

GUI Tab

Security tab

See also

Crypto Protocol Version

Microsoft Entra ID authentication

Performance considerations