Configuring SSL Connections
Note:
In this documentation, "SSL" indicates both TLS (Transport Layer Security) and SSL (Secure Sockets Layer). The connector supports industry-standard versions of TLS/SSL.
If you are connecting to a Couchbase Server instance that has SSL enabled, you can configure the connector to connect to an SSL-enabled socket. When connecting to a server over SSL, the connector uses one-way authentication to verify the identity of the server.
Important:
If SSL is enabled and you are connecting to Couchbase Server prior to version 4.5, the connector does not support load balancing even if the Redundancy property is set to 1.
You provide the configuration information to the connector in the connection URL. For more information about the syntax of the connection URL, see Building the Connection URL.
To configure an SSL connection:
- Set the
EnableSSLproperty to1. - Set the
SSLCertificateproperty to the full path of the trust store containing CA certificates for verifying the identity of the Couchbase Server instance.
For example:
jdbc:couchbase://localhost:8093/default2;EnableSSL=1;
SSLCertificate=C:\\Documents\\Couchbase_certs.jks;