The following procedure explains how to define an SSL connection for Talend Administration Center with an AWS RDS database enabled over a network
through the database configuration page.
Before you begin
Download and install the patch TPS-3375. You can
get it by creating a support case.
Procedure
-
Start the application server, then open a Web browser and type the URL of the
Talend Administration Center Web application.
-
On the Login page, click Go to db config page, then enter the administrator password.
-
To access the SSL encrypted MySQL server , add the following JDBC URL with its
additional parameters:
jdbc:mysql://{Endpoint}:3306/{DB_Name}?verifyServerCertificate=true&useSSL=true&requireSSL=true&trustCertificateKeyStoreUrl=file:///{Path_to_keystore}&trustCertificateKeyStorePassword=password
-
Generate a keystore with the AWS bundled certificate using the following java
keytool command:
keytool -import -alias {alias_name} -file
rds-combined-ca-bundle.pem -keystore {name_of_keystore}
Example: keytool -import -alias rdsmysql -file
rds-combined-ca-bundle.pem -keystore rdskeystore
Information noteTip: You can enable the debug mode by adding
Djavax.net.debug=SSL to the setenv.sh file to
know which certificates are used by the configuration.