We've got encrypted connections enabled for several SQL Servers. The certificates are due for renewal & our security guy is asking if SQL Server supports the ECC algorithm for the certificate (sha384ECDSA).
So the question is - does SQL Server support use of certificates created using the sha384ECDSA signature algorithm for enabling connection encryption? Or does it not matter, because that's all handled at the Windows level (or subsystem therein)?
The closest I can find to an answer is "The TLS encryption is performed within the protocol layer and is available to all supported SQL Server clients." from https://docs.microsoft.com/en-us/sql/database-engine/configure-windows/enable-encrypted-connections-to-the-database-engine?view=sql-server-ver15#transport-layer-security-tls. Presumably this means it doesn't matter what algorithm is used for the certificate, as long as Windows supports it.