Mirrored SQL Server Fabric Data Gateway SQL Server Encrypted Connection

Fabric Mirrored SQL Server Data Gateway Issue

Posted by John Liu on Friday, January 9, 2026

When create mirrored SQL server in Fabric to on-premises SQL database, we will need to use On-Premises Data Gateway. We might encounter issue with Use Encrypted Connection option with self-signed certificate. To resolve issue with Use Encrypted Connection, try following solutions:

Solution 1: Add your SQL Server to the “Trusted Servers” List:

There is a “hidden” configuration in the On-premises Data Gateway that allows you to bypass certificate validation for specific servers.

On the machine where the Gateway is installed, navigate to: C:\Program Files\On-premises data gateway

Find and open the file Microsoft.PowerBI.DataMovement.Pipeline.GatewayCore.dll.config in a text editor like Notepad (run as Administrator).

Search for the setting: SqlTrustedServers.

Add your SQL Server name (the one you typed into the Fabric connection box) as the value:


<setting name="SqlTrustedServers" serializeAs="String">
    <value>YourServerNameOrIP</value>
</setting>

Note: If you have multiple servers, use a comma-separated list.

Save the file and Restart the On-premises Data Gateway service via the Windows Services app (services.msc).

Solution 2: Force the Gateway to Trust the Self-Signed Cert

If Solution 1 doesn’t work, you must manually move your self-signed certificate into the Windows Trusted Root store so the Gateway “trusts” it as a valid authority.

Export the Certificate if you don’t have a copy:

Open Manage Computer Certificates (certlm.msc).

Go to Personal > Certificates.

Find the certificate used by SQL Server (it usually matches your computer name).

Right-click > All Tasks > Export… (Choose .CER format, do not export private key).

Import the Certificate:

In the same certlm.msc window, go to Trusted Root Certification Authorities > Certificates.

Right-click > All Tasks > Import… and select the file you just exported.

Restart the Gateway service.

CATALOG
    FEATURED TAGS
    ai api automation availability availability sets availability zones aws vm azure azure automation runbook azure blob azure cosmos db azure data lake azure function app azure openai azure sign-in azure site recovery azure sql database azure sql db azure subscription azure vm base64 certificate change data capture change tracking chrome clr container cte data api builder data conversion data gateway database role database size date table dax db config derived table diagram direct query disk management disk space docker downtime dtc dynamic m parameter embedding encrypted connection excel excel online execution plan extended events external data fabric fabric capacity failover cluster fk geometry hierarchy httpwebrequest hugo hyper-v incognito mode index infrastructure inline tvf json kql lakehouse linked server live query statistics locking m machine learning machine learning model machine learning services master key mcp mdx memory memory grant mermaid mirrored sql server network network card network category onedrive onnx runtime openrowset p2v parquet performance polybase power automate power bi power bi report tricks power platform power query powershell printer public ip address pyspark python qgis qt designer query performance query plan query troubleshooting r regex replication route s3 schema design scripting self-signed certificate server role sharepoint snowflake software development sofware development spark sql sql agent sql availability group sql error sql failover cluster instance sql index sql openjson sql permission sql recovery sql script sql security sql server sql server admin sql server config sql statistics ssis ssisdb ssl ssl/tls error ssms table expression tempdb tips troubleshooting unicode view visual studio visual studio code vmware wait statistics wi-fi connection issue windows settings