I found the encryption setting in the same area where I enable the SQL port. But, when I enable the encryption and load the server certificate. sqlserver service will not start anymore. I looked the sql error log, here is what I found:
The server could not load the certificate it needs to initiate an ssl connection. It returned the following error: 0x8009030d. Check certifcates to make sure they are valid.
Error: 17182, Serverity: 16, state: 1
Unable to load user-specified certificate [Cert Haash(sha1) "xxxxxxxxxxxxxxxxxxxxxxxxxxx"]. The server will not accept a connection. You should verify that the certificate is correclty installed.
(This is the same certificate I used for my https for agent to server communication, so I know it is good)
As for your question, is it encrypt sql access needed? I believed this is something is recommended by the installation guide. If the SQL traffic is not encrypted, is it vulnerability that someone may able to see the traffic in plain text? What kind of information is pass through between the database and server or console?