on 06-26-2015 3:59 PM
Our 15.7 sybase need have SSL enabled and USE security serverces those two option change from 0 to 1, does this will affect our client connection?
What I want know is after we enable this two, do we have to change all connections to use SSL? or SSL just a new option and all clients can still use regular NON SSL connection?
Hi,
This depends on how you set ssl up.
As Mark mentioned, you can have the ASE setup with non-ssl ports and ssl ports.
Example start the ASE with this interfaces/sql.ini:
ASE
master tcp ether myhost 1234 ssl
query tcp ether myhost 1234 ssl
master tcp ether myhost 4321
query tcp ether myhost 4321
This will start 2 ports 1 ssl port on 1234 and 1 non-sslport on 4321.
You can also start, stop, and display ports with sp_listener.
You can check if the ssl connection is working with:
select @@ssl_ciphersuite
This should display the ssl cipher if this shows NULL then ssl is not being used.
On the application side:
If your applications are setup for 1234 non-ssl and you switch this to an ssl port, your applications will stop connecting to the ASE.
You will need to add the certificates to your application.
Also, I do not believe you need use security services, 1.
This is only used for kerberos authentication.
Regards,
Ryan
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
86 | |
10 | |
10 | |
9 | |
7 | |
7 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.