SCOM SDK does not use encryption when it establishes connections to the Operationsmanager & OperationsmanagerDW DB's as how SCVMM does.
We have SCOM & SCVMM databases hosted in the same SQL server and noticed that SCOM SDK does not use encryption when it establishes connections to the Operationsmanager & OperationsmanagerDW DB's as how SCVMM does.
We use the below SQL query to validate the same:
Select distinct se.sessionid, dbname= case when dbid = 0 then null when dbid <> 0 then dbname(dbid) end,
se.login_time,host_name, se.program_name,login_name, con.encrypt_option, getdate() as 'logdate'
from sys.dmexecsessions se
LEFT JOIN sys.sysprocesses sp on se.sessionid = sp.spid
LEFT JOIN sys.dmexec_connections con
ON con.session_id = se.session_id
WHERE NOT encryptoption IS NULL and dbname(dbid) like '%Operationsmanager%'
The field named "Encrypt_Option" in the output shows "True" or "False" if the connection is encrypted or not.
When same query is executed against the VMM database we see the Encryption is set to "True".
it would be great to have SCOM as well encrypt its DB connection similar to SCVMM.