Configuring SSL Verification
If you are connecting to a Couchbase
Important:
If SSL is enabled and you are connecting to Couchbase Server prior to version 4.5, load balancing is not supported.
To configure SSL verification:
- To access SSL options, open the ODBC Data Source Administrator where you created the DSN, then select the DSN, then click Configure, and then click SSL Options.
- Select the Enable SSL check box.
- To allow authentication using self-signed certificates that have not been added to the list of trusted certificates, select the Allow Self-signed Server Certificate check box.
- To allow the common name of a CA-issued SSL certificate to not match the host name of the Couchbase server, select the Allow Common Name Host Name Mismatch check box.
- To specify the CA certificates that you want to use to verify the server, do one of the following:
- To verify the server using the trusted CA certificates from a specific
.pemfile - Or, to use the trusted CA certificates
.pemfile that is installed with the connector, leave the - Or, to use the Windows trust store, select the Use System Trust Store check box.
Important:
- If you are using the Windows trust store, make sure to import the trusted CA certificates into the trust store.
- If the trusted CA supports certificate revocation, select the Check Certificate Revocation check box.
- If you are using the default root certificate of your Couchbase Server instance and it has been imported into the Windows trust store, do not select the Check Certificate Revocation check box.
- From the Minimum TLS Version drop-down list, select the minimum version of TLS to use when connecting to your data store.
- To save your settings and close the SSL Options dialog box, click OK.
- SSL Driver Configuration Options on page 1
- Creating a Data Source Name
- Creating a Data Source Name on Windows