Defining an SSL connection with an AWS RDS database - 7.2

Talend Data Services Platform Installation Guide for Windows

EnrichVersion
7.2
EnrichProdName
Talend Data Services Platform
EnrichPlatform
Talend Activity Monitoring Console
Talend Administration Center
Talend Artifact Repository
Talend CommandLine
Talend Data Preparation
Talend Data Stewardship
Talend DQ Portal
Talend ESB
Talend Identity and Access Management
Talend Installer
Talend JobServer
Talend Log Server
Talend Repository Manager
Talend Runtime
Talend SAP RFC Server
Talend Studio
task
Installation and Upgrade

The following procedure explains how to define an SSL connection for Talend Administration Center with an AWS RDS database enabled over a network through the database configuration page.

Before you begin

Download and install the patch TPS-3375. You can get it by creating a support case.

Procedure

  1. Start the application server, then open a Web browser and type the URL of the Talend Administration Center Web application.
  2. On the Login page, click Go to db config page, then enter the administrator password.
  3. To access the SSL encrypted MySQL server , add the following JDBC URL with its additional parameters: jdbc:mysql://{Endpoint}:3306/{DB_Name}?verifyServerCertificate=true&useSSL=true&requireSSL=true&trustCertificateKeyStoreUrl=file:///{Path_to_keystore}&trustCertificateKeyStorePassword=password
  4. Generate a keystore with the AWS bundled certificate using the following java keytool command: keytool -import -alias {alias_name} -file rds-combined-ca-bundle.pem -keystore {name_of_keystore}
    Example: keytool -import -alias rdsmysql -file rds-combined-ca-bundle.pem -keystore rdskeystore
    Tip: You can enable the debug mode by adding Djavax.net.debug=SSL to the setenv.sh file to know which certificates are used by the configuration.