MySQL SSL

Added in tiki12

For some system, e.g. cloud based systems such as WIndows Azure, it is recommended to use an SSL connection to the MySQL database.

To enable a MySQL SSL connection, 3 key files must be specified, in PEM format

Client key. Filename must end with -key.pem
Client cert. Filename must end with -cert.pem
CA cert. Filename must end with -ca.pem

These files are placed in the tikiroot/db/cert folder. Tiki will detect these files and initiate an SSL connection. The db/cert folder could look something like this (Azure Clear DB sample)

MySQL SSL Capture 20130830162426 464 0
Note: It is assumed that the folder only contains 1 set of keys.

The MySQL SSL status can be checked in the Admin / Security panel.
Note that the MySQL SSL status display, is only shown if the MySQL server has activated SSL

MySQL SSL Capture 20130830162711 185 0

If any one of the key files are missing, a regular non-SSL connection is used.

Connecting using SSL requires

PHP extension php_openssl.dll must be enabled
The MySQL server has activated SSL
Tiki is configured with the 3 key files.

Information	Version
Thu 01 Dec, 2022 23:30 GMT-0000 Marcellin Wabo Add Azure Database for MySQL flexible server's cas to documentation	12
Fri 06 May, 2022 04:43 GMT-0000 Marcellin Wabo	11
Tue 19 Apr, 2022 22:58 GMT-0000 Marcellin Wabo	10
Tue 22 Mar, 2022 17:25 GMT-0000 Marc Laporte	9
Tue 22 Mar, 2022 02:10 GMT-0000 Marc Laporte	8
Tue 03 Dec, 2013 20:45 GMT-0000 Arild Berg	7
Sat 07 Sep, 2013 00:46 GMT-0000 Arild Berg	6
Wed 04 Sep, 2013 08:44 GMT-0000 Arild Berg	5
Fri 30 Aug, 2013 09:30 GMT-0000 Arild Berg	4
Fri 30 Aug, 2013 09:28 GMT-0000 Arild Berg	3
Fri 30 Aug, 2013 09:27 GMT-0000 Arild Berg	2
Fri 30 Aug, 2013 09:21 GMT-0000 Arild Berg	1

History: MySQL SSL

Preview of version: 6

MySQL SSL

History

About Tiki

Support

Community

Documentation

Development

Legal

Tiki Project Sites

Networks

Navigation and related functionality and content

Related content

History: MySQL SSL

Preview of version: 6

MySQL SSL

History

Related content