Resolving Issues When Onboarding SSL-Enabled MySQL Database Servers
Error Message: Connections using insecure transport are prohibited while --require_secure_transport=ON
Solution: To overcome this issue follow the steps given below:
- Execute the following query in the corresponding MySQL shell script:
- Add the client certificates along with their root certificates in AppManagerHome/working/cert/apm.keytore. Click here for the steps to import certificates in Applications Manager.
- Add the monitor by enabling 'SSL' option in Add New Monitor page. If the monitor has already been added, update the 'SSL' option in Edit Monitor page.
ALTER USER '<user>'@'<host/Ip-address>' REQUIRE <tls_option>; [ tls_option: { SSL | X509 | CIPHER 'cipher' | ISSUER 'issuer' | SUBJECT 'subject' } ]Error Message: javax.net.ssl.SSLHandshakeException: java.security.cert.CertPathValidatorException: Path does not chain with any of the trust anchors
Reason:
Possible causes include:
- Certificate is not added to Applications Manager
- Certificate is corrupt, invalid or expired
Solution: To resolve this issue follow the steps given below:
- Check if the certificate has been properly uploaded in Applications Manager and get a screenshot of it for further verification.
- Ensure that the certificate is valid.
- Re-upload the certificate, restart Applications Manager, and check if the issue has been resolved.
If the issue still persists, reach out to our support team with the following details :
- Go to Settings → Tools → Manage certificates → List certificates and take a screenshot of the page.
- Clarify how the certificate was uploaded under the Trust certificate tab including selected options during the process.
New to ADSelfService Plus?
Related Articles
How can I upgrade the MySQL connector.jar?
For all the following issues mentioned below, the solution is same. Invalid authorization specification message from server. Unknown character set index for field '255' received from server. Communication link failure: javax.net.ssl.SSLException. ...Resolving MySQL Authentication Issues related to caching_sha2_password
The following errors are commonly encountered while connecting to MySQL databases: Public Key Retrieval is not allowed. Client does not support authentication protocol requested by server.plugin type was-'sha256_password'. RSA public key is not ...Import Certificates for MariaDB/MySQL Monitoring with SSL
This guide details how to import SSL/TLS certificates into Applications Manager for monitoring MariaDB/MySQL databases configured for secure connections. The process depends on the tls_option assigned to the monitoring MySQL user. Certificate ...Troubleshooting SSL Handshake Error
An SSL Handshake error typically occurs when a secure connection cannot be established due to issues like incompatible SSL protocol versions, ciphers or missing client certificates. Verify URL Accessibility Ensure that the URL you’re monitoring is ...How to view data under Session & Performance tab in MySQL monitor?
Note: If the server is a MariaDB server, check whether the SYS database is installed by executing the below query on MariaDB shell: show databases; If the output does not contain the SYS database, then install the SYS database suitable for the ...