SQLCheck request regarding Certificates

[coraphise]

If possible, can we pull certificate chain information, if we determine a "real" certificate is being used?

I see three options:

1. Self-generated certificate, which requires no further check
2. Self-signed certificate, perhaps we can check if this exists in both personal and trusted root
3. A "real" cert issued by some certificate authority, in which case we can possibly check and list the certificate chain or an error indicating there is no valid chain, as many errors indicate.

This is something I would be willing to investigate in the new year, assuming other duties don't keep me from helping here.

[erbirdsong]

The certificate chain was issued by an authority that is not trusted.

[Malcolm-Stewart]

erbirdsong,
<< The certificate chain was issued by an authority that is not trusted. >>
This is not something that can be directly troubleshot with just the SQLCheck output.
Run it on the server to see what sort of certificate your SQL Server is using. Most commonly, turning on encryption when SQL Server is using the 'self-generated' certificate is the most common cause of this issue.