Thanks for the reply. Reading through the MSDN article the only paramaters I think I need are:
"encrypt=true;trustServerCertificate=true"
I believe the encrypt parameter is an option in the event the server does not demand encryption; with that switch the client will request it. Either way I end up with the same errors as before.
From what I understand the trustserverCertificate is kind of a catch all where the client automatically accepts any certificate on the server (useful for testing / self signed probably not ideal for production).