Thank you for your reply, but you're not answering what I'm asking about. The referenced instructions say, "For SSL support to work, you must have the following: ... A client certificate (covered later in this section)." I'm asking if it's possible to *not* supply a *client* certificate because my server is not configured to verify the client certificate. In other words, I'm only interested in one-way SSL authentication like how a web browser typically works with an HTTPS server, and I'm wondering if I can do the same with Connector/J. I'm not wishing to do two-way (mutual) SSL authentication, but the instructions seem to be describing two-way only. I'm wondering if I can do one-way and not need to supply a client certificate to Connector/J. Thanks!