Configuring SSL Verification

If you are connecting to a Redshift server that has Secure Sockets Layer (SSL) enabled, then you can configure the connector to connect to an SSL-enabled socket. When connecting to a server over SSL, the connector supports identity verification between the client and the server.

To configure SSL verification:

1. To access the SSL options for a DSN, open the ODBC Data Source Administrator where you created the DSN, then select the DSN, then click Configure, and then click SSL Options.
2. In the Authentication Mode list, select the appropriate SSL mode.

Note:

For information about SSL support in Amazon Redshift, see the topic Connect Using SSL in the Amazon Redshift Management Guide at http://docs.aws.amazon.com/redshift/latest/mgmt/connecting-ssl-support.html#connect-using-ssl.

3. To specify the minimum version of SSL to use, from the Minimum TLS drop-down list, select the minimum version of SSL.
4. To use the System Trust Store for SSL certificates, select the Use System Trust Store check box.
5. If you selected Use System Trust Store, choose one of the following options:
   • To check the validity of the certificate's trust chain, select the Check Certificate Revocation check box.
   • Or, to accept self-signed certificates, select the Allow Self-signed Server Certificate check box.
6. To specify an SSL certificate, select the Enable Custom SSL CA Root Certificate check box, and then, in the Path field, specify the full path to the certificate file.
7. To save your settings and close the dialog box, click OK.
8. To save your settings and close the Simba Amazon Redshift ODBC Driver DSN Setup dialog box, click OK.

Related topics

• Security and Authentication
• SSL Driver Configuration Options on page 1
• Creating a Data Source Name