Skip navigation links

MySQL Forums :: Security :: Connecting with SSL


Advanced Search

Connecting with SSL
Posted by: Marcel Frigault ()
Date: November 30, 2006 09:18PM

Hello,

I am trying to simply connect to a Mysql database using the Mysql client with SSL.

I followed the instructions in the documentation but I keep getting error 2026 (HY000).

My first question is how are the users that are defined in the database (using the GRANT statement with REQUIRE X509) and the certificate that I am using with mysql client associated? What needs to match?

my grant statement is:

GRANT ALL PRIVILEGES ON test.* TO 'client_tania'@'localhost' IDENTIFIED BY 'tania' REQUIRE X509;

The CN of the client_tania certificate is:

CN=client_tania/emailAddress=antraxx.team@gmail.com

Is it the CN in the certificate that must be the user name defined in the GRANT statement?

How is the password used in the GRANT statement related to the certificate?

I am invoking mysql as follows:

mysql --ssl-ca=/root/openssl/6120cacert.pem --ssl-cert=/root/openssl/client_tania-cert.pem --ssl-key=/root/openssl/client_tania-private-key.pem

in my.conf, the following lines exist:

[mysqld]

ssl-ca=/root/openssl/6120cacert.pem
ssl-cert=/root/openssl/mysql-server-cert.pem
ssl-key=/root/openssl/mysql-server-private-key.pem
ssl-cipher=ALL


Thank-you,

Marcel.

Options: ReplyQuote


Subject Views Written By Posted
Connecting with SSL 21802 Marcel Frigault 11/30/2006 09:18PM
Re: Connecting with SSL 7401 Matthew Boehm 01/10/2007 04:40PM
Re: Connecting with SSL 6863 Kamil JireŇ° 02/05/2008 10:54AM
Re: Connecting with SSL 6595 Allen Wang 08/26/2007 09:13PM
Re: Connecting with SSL 6798 Lars Hanke 11/13/2007 04:49PM


Sorry, you can't reply to this topic. It has been closed.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.