Connect to database with SSL⚓︎
1 Operation Procedure⚓︎
1.1 Prepare the CA file of database⚓︎
- Prepare the CA file of database. Private key authentication is not supported currently.
mkdir -p /opt/jumpserver/config/certs
cp db_ca.pem /opt/jumpserver/config/certs/db_ca.pem
- Test connecting to MySQL
# . /opt/jumpserver/config/config.txt
# mysql --ssl-ca=/opt/jumpserver/config/certs/db_ca.pem -h$DB_HOST -P$DB_PORT -U$DB_USER -p$DB_PASSWORD $DB_NAME
1.2 Edit configuration file⚓︎
- Open the configuration file
vi /opt/jumpserver/config/config.txt
- Update configuration file for DB SSL
DB_USE_SSL=True
1.3 Restart JumpServer⚓︎
cd /opt/jumpserver-installer-v3.10.5
./jmsctl.sh down
./jmsctl.sh start
For JumpServer deployments using alternative methods, place the database certificate 'db_ca.pem' in '/opt/jumpserver/data/certs' and restart to complete the process.