Date
1 - 4 of 4
Using a TLS connection to the MySQL database #uaa
|
Shetty, Viraj S [CTR]
We have a separate instance of UAA server interacting with the MySQL database running on cloud.gov. Recently, we have been advised to use a TLS connection to connect to the database. After doing some research, we found that the TLS certifciate is setup on the MySQL server. How do I make sure that the UAA server can connect to this MySQL server using TLS ? Is there any any configuration in uaa.yml that I can set ?
Any help would be appreciated ! Thanks, Viraj |
|
|
|
Filip Hanik
MySQL TLS is enabled through the JDBC URL of the MySQL driver. For example, if you are deploying the UAA using Bosh, it generates the JDBC URL based on your configuration, and inserts that into uaa.yml Here is a reference to URL properties We have a separate instance of UAA server interacting with the MySQL database running on cloud.gov. Recently, we have been advised to use a TLS connection to connect to the database. After doing some research, we found that the TLS certifciate is setup on the MySQL server. How do I make sure that the UAA server can connect to this MySQL server using TLS ? Is there any any configuration in uaa.yml that I can set ? |
|
|
|
Shetty, Viraj S [CTR]
Thanks Filip. That was very helpful. I updated the uaa.yml with useSSL = true. I had to set trustServerCertificate to true as well otherwise it gives a handshake error.
If i want to validate the MySQL server certificate, then do I just add it to the cacerts truststore of the UAA server ? |
|
|
|
Filip Hanik
You’re welcome. Covered in a later section Thanks Filip. That was very helpful. I updated the uaa.yml with useSSL = true. I had to set trustServerCertificate to true as well otherwise it gives a handshake error. |
|
|