SSL Settings

Secure Sockets Layer(SSL) is a protocol for transmitting private documents via the Internet. To get a secure connection, the first thing you need to do is to install OpenSSL Library and download Database Source.

Note: Available only for MySQL, PostgreSQL, MariaDB and MongoDB. Support from PostgreSQL 8.4 or later.

MySQL and MariaDB Connections

To provide authentication details, enable Use authentication and fill in the required information:

Client Key File

The SSL key file in PEM format to use for establishing a secure connection.

Client Certificate File

The SSL certificate file in PEM format to use for establishing a secure connection.

CA Certificate File

The path to a file in PEM format that contains a list of trusted SSL certificate authorities.

Specified Cipher

A list of permissible ciphers to use for SSL encryption.

PostgreSQL Connection

Choose the SSL Mode:

allow

First try a non-SSL connection; if that fails, try an SSL connection.

prefer

First try an SSL connection; if that fails, try a non-SSL connection.

require

Only try an SSL connection.

verify-ca

Only try an SSL connection, and verify that the server certificate is issued by a trusted CA.

verify-full

Only try an SSL connection, verify that the server certificate is issued by a trusted CA and that the server hostname matches that in the certificate.

To provide authentication details, enable Use authentication and fill in the required information:

Client Certificate File

The path of the client certificate.

Client Key File

The path of the client private key.

Root Certificate File

The path of the trusted certificate authorities.

Certificate Revocation List File

The file path of the SSL certificate revocation list (CRL).

MongoDB Connection

To provide authentication details, enable Use authentication and fill in the required information:

Client Key

The SSL key file in PEM format to use for establishing a secure connection.

Client Key Password

The password of the key file.

Allow any server SSL certificates

Check this option if your MongoDB server allows any server SSL certificates.

CA Certificate

The path to a file in PEM format that contains a list of trusted SSL certificate authorities.

Certificate Revocation List

The file path of the SSL certificate revocation list (CRL).

Allow invalid host names

Check this option to allow invalid hostnames in SSL certificates.