Configuring Proxy Connections

You can configure the connector to connect through a proxy server instead of connecting directly to the Athena service.

Important:

Important:

If you are connecting to Athena through a proxy server, make sure that the proxy server does not block port 444. The result set streaming API uses port 444 on the Athena server for outbound communications. For more information, see Use Result Set Streaming.

To configure a proxy connection :

  1. To access proxy options, open the ODBC Data Source Administrator where you created the DSN, then select the DSN, then click Configure, and then click Proxy Options.
  2. To enable proxy connections, select the Use Proxy check box.
  3. In the Proxy Host field, type the IP address or host name of your proxy server.
  4. In the Proxy Port field, type the number of the TCP port that the proxy server uses to listen for client connections.
  5. In the Proxy Username field, type your user name for accessing the proxy server.
  6. In the Proxy Password field, type your password for accessing the proxy server.
  7. To encrypt your credentials, click Password Options and then select one of the following:
    • If the credentials are used only by the current Windows user, select Current User Only.
    • Or, if the credentials are used by all users on the current Windows machine, select All Users Of This Machine.
  8. To save your settings and close the HTTP Proxy Options dialog box, click OK.

If the proxy server is configured to intercept SSL-encrypted connections, then in addition to specifying the proxy server information described above, you must also import the proxy server's root certificate into the Windows trust store.

To import the proxy server's root certificate to the Windows trust store:

  1. Export the proxy server's root certificate file. You can do this using OpenSSL.

    2. For example, the following command exports the root certificate, originally a .pem file, to a .crt file:

    openssl x509 -outform der -in clientPublicKey.pem -out clientPublicKey.crt

    For more information, see "OpenSSL Commands" in the OpenSSL documentation: https://www.openssl.org/docs/manmaster/man1/.

  2. Import the certificate into the Window trust store. For detailed instructions, see "Installing a Certificate in the Trusted Root Certification Authorities Store" in the Microsoft Windows documentation: https://docs.microsoft.com/en-us/dotnet/framework/wcf/feature-details/how-to-create-temporary-certificates-for-use-during-development#to-install-a-self-signed-certificate-in-the-trusted-root-certification-authorities.

Related topics