How to fix "Connections using insecure transport are prohibited while --require_secure_transport=ON" in MySQL?

How to fix "Connections using insecure transport are prohibited while --require_secure_transport=ON" in MySQL?

Error Message:
Connections using insecure transport are prohibited while --require_secure_transport=ON
‚Äč

Reason: This error occurs when the user is trying to add a SSL-supported monitor(i.e --require_secure_transport option enabled) as a non-SSL monitor in Applications Manager.

Solution: To overcome this issue follow the steps given below:
  1. Execute the following query in the corresponding mysql shell script:
    1. ALTER USER '<user>'@'<host/Ip-address>' REQUIRE <tls_option>; [ tls_option: { SSL | X509 | CIPHER 'cipher' | ISSUER 'issuer' | SUBJECT 'subject' } ]
  2. Add client certificates along with its root certificates in AppManagerHome/working/cert/apm.keytore.
  3. Add the monitor by enabling 'SSL' option in Add New Monitor page. If the monitor has already been added, update the 'SSL' option in Edit Monitor page.



          • Related Articles

          • LDAP - Unable to find valid SSL Certificate

            If there is an error while adding LDAP Server Monitor with the message "Unable to find valid SSL Certificate", then please try the below steps to troubleshoot the issue. When the error occurs we can find the below traces in the "stderr.txt.*" log ...
          • Troubleshooting SSL Handshake Error

            SSL Handshake Error SSL Handshake error occurs when a secure connection cannot be established to the URL added for monitoring. Common reasons for it are wrong SSL protocol version, incompatible ciphers, and invalid/missing client-side certificate.  ...
          • How to import certificates for monitoring DB2 Server with SSL authentication?

            By default, if you want to use self-signed certificates for SSL connection then the certificate generated by the DB2 server will be db2server.arm. But our AppManager doesn't support arm files. So it has to be renamed as the db2server.cer and then ...
          • How to monitor SSL Certificate of FTPS server?

            Two modes to invoke client security in FTPS Explicit mode Implicit mode Explicit mode (Default port 21) - This port shouldn't be used In Explicit mode, an FTPS client must "explicitly request" security from an FTPS server by sending an FTP command ...
          • How to import certificates for monitoring Oracle database with SSL authentication?

            For users using Applications Manager version 14250 and below: One-way SSL: (Client authentication disabled) 1. Open the command prompt using 'Run as administrator' option and navigate to the Applications Manager installation directory. 2. Import your ...