Configuring MS SQL JDBC Driver to use SSL connection

Document ID : KB000046304
Last Modified Date : 14/02/2018
Show Technical Document Details

Problem:

While trying to configure and connect a JDBC data source to MS SQL Server using SSL it reports:-

Invalid connection properties setting; The SQL server login requires SSL

Cause: 

The default JVM security provider does not have the cipher available to connect to the MS SQL Server.

Resolution:

For MS SQL server, the JDBC driver requires "Bouncy Castle" to be the JCE provider. To use this, set the following system property in /opt/SecureSpan/Gateway/node/default/etc/conf/system.properties:- 

com.l7tech.common.security.jceProviderEngineName=bc 

A CA API Gateway restart is required, after which the JDBC SQL Server can be configured to use SSL via 'Manage JDBC Connections'.  Add the following connection properties:

Driver Class - com.l7tech.jdbc.sqlserver.SQLServerDriver 

JDBC URL - jdbc:l7tech:sqlserver://x.x.x.x:49204 

(replace x.x.x.x with the actual IP/hostname of the SQL server) 

User Name - as appropriate 

Password - as appropriate 

Pool Configuration - default 

Additional Properties: 

DatabaseName - as appropriate 

EncryptionMethod - SSL 

ValidateServerCertificate - false 

Additional Information:

https://docops.ca.com/ca-api-gateway/9-0/en/configure-security/tasks-menu-security-options/manage-jdbc-connections/jdbc-connection-properties