Copy link to clipboard
Copied
Sql 2012 and Coldfusion 10
We have read through the following guides
https://wikidocs.adobe.com/wiki/display/coldfusionen/Data+Source+Management+for+ColdFusion
http://helpx.adobe.com/coldfusion/kb/import-certificates-certificate-stores-coldfusion.html
Upon enabling SSL encryption on the SQL server, we are able to connect to the datasource with this connection string:
EncryptionMethod=SSL; ValidateServerCertificate=false;
**some of the information below has been anonymized for security purposes**
When enabling server validation, the connection begins timing out. We have imported the SQL certificate into the keystore using this command
C:\Program Files\Java\jre7\bin>keytool.exe -importcert -alias cstvnetsql9 xxx.xxx.ucf.edu -trustcacerts -file cstvnetsql9xxx.xxx.ucf.edu.cer -keystore cacerts -storepass changeit
Here is the ConnectionString we are using now:
EncryptionMethod=SSL; ValidateServerCertificate=true;TrustStore="C:\Program Files\Java\jre7\lib\security\cacerts";TrustStorePassword=changeit;HostNameInCertificate=CSTVNETSQL9xxx.xxx.ucf.edu;
Here is the error we receive:
Connection verification failed for data source: TJEEI
java.sql.SQLException: Timed out trying to establish connection
The root cause was that: java.sql.SQLException: Timed out trying to establish connection
Thanks.
Copy link to clipboard
Copied
SQL
ColdFusion 10
keytool -keystore sqlstore.jks -genkey -alias sqlstore
keytool -importcert -file sqlserver.cer -keystore sqlstore.jks -storepass changeit -alias sqlserver
EncryptionMethod=SSL; trustStore=C:/ColdFusion10/jre/bin/sqlstore.jks; trustStorePassword=changeit; ValidateServerCertificate=true;
NOTE: The subject property of the certificate and key store must indicate that the common name (CN) is the same as the host name or fully qualified domain name (FQDN) of the server computer.
You need to enable SSL encryption and need to set ValidateServerCertificate as false
HTH
Thanks
VJ