Resolving Issues When Onboarding SSL-Enabled MySQL Database Servers
Error Message: Connections using insecure transport are prohibited while --require_secure_transport=ON
Solution: To overcome this issue follow the steps given below:
- Execute the following query in the corresponding MySQL shell script:
- Add the client certificates along with their root certificates in AppManagerHome/working/cert/apm.keytore. Click here for the steps to import certificates in Applications Manager.
- Add the monitor by enabling 'SSL' option in Add New Monitor page. If the monitor has already been added, update the 'SSL' option in Edit Monitor page.
ALTER USER '<user>'@'<host/Ip-address>' REQUIRE <tls_option>; [ tls_option: { SSL | X509 | CIPHER 'cipher' | ISSUER 'issuer' | SUBJECT 'subject' } ]Error Message: javax.net.ssl.SSLHandshakeException: java.security.cert.CertPathValidatorException: Path does not chain with any of the trust anchors
Reason:
Possible causes include:
- Certificate is not added to Applications Manager
- Certificate is corrupt, invalid or expired
Solution: To resolve this issue follow the steps given below:
- Check if the certificate has been properly uploaded in Applications Manager and get a screenshot of it for further verification.
- Ensure that the certificate is valid.
- Re-upload the certificate, restart Applications Manager, and check if the issue has been resolved.
If the issue still persists, reach out to our support team with the following details :
- Go to Settings → Tools → Manage certificates → List certificates and take a screenshot of the page.
- Clarify how the certificate was uploaded under the Trust certificate tab including selected options during the process.
New to ADSelfService Plus?
Related Articles
How can I upgrade the MySQL connector.jar?
For all the following issues mentioned below, the solution is same. Invalid authorization specification message from server. Unknown character set index for field '255' received from server. Communication link failure: javax.net.ssl.SSLException. ...Resolving MySQL Authentication Issues related to caching_sha2_password
The following errors are commonly encountered while connecting to MySQL databases: Public Key Retrieval is not allowed. Client does not support authentication protocol requested by server.plugin type was-'sha256_password'. RSA public key is not ...How to view data under Session & Performance tab in MySQL monitor?
Note: If the server is a MariaDB server, check whether the SYS database is installed by executing the below query on MariaDB shell: show databases; If the output does not contain the SYS database, then install the SYS database suitable for the ...Troubleshooting SSL Handshake Error
An SSL Handshake error typically occurs when a secure connection cannot be established due to issues like incompatible SSL protocol versions, ciphers or missing client certificates. Verify URL Accessibility Ensure that the URL you’re monitoring is ...How to import certificates for monitoring Oracle database with SSL authentication?
For users using Applications Manager version 14250 and below: One-way SSL: (Client authentication disabled) 1. Open the command prompt using 'Run as administrator' option and navigate to the Applications Manager installation directory. 2. Import your ...