SSL Authentication Error - When adding MariaDB datasource
Hello,
I wanted to try the Linux Version, to see what was up and running, and if new things where there...
I am running 2022.1.2.2 ....
and tried under Ubuntu 22.04 (brand fresh install) and a existing ubuntu 21.10.
When trying to add my datasource to RDM... I have this
It's a MySQL/MariaDB database running on a linux machine (where I do not have access and info)...
I see this when I try to add the datasource: 
We are working with the "windows" version without any problem (version: 2022.1.25.0)
Is there something I am missing ?
Thanks in advance !
And have a nice day
All Comments (7)
Hi,
We recently switch to .net6 as our backend instead of mono.
.net6 is, out of the box, stricter when it comes to SSL.
Can you try to relax SSL minimum requirements (in effects allowing TLS 1.1) by following these steps
In /etc/ssl/opensll.cnf
Place this at the top of the file
openssl_conf = default_conf
You can place this in the file, doesn’t matter where.
[ default_conf ] ssl_conf = ssl_sect [ ssl_sect ] system_default = system_default_sect [ system_default_sect ] MinProtocol = TLSv1 CipherString = DEFAULT@SECLEVEL=1
Let me know if this helps
Regards
Jonathan Lafontaine
Hi,
Ok, this makes me able to launch the software..... :-)
Thanks ...
Could/ Should I have known this ssl thing somewhere ???
Hi,
No, I don't think this is widely known and easily accessible knowledge.
And the error message is rather generic. We've had other users with TLS 1.1 problems recently with error messages that were a little more helpful.
I simply assumed your error was related and I'm glad it was the case.
Regards
Jonathan Lafontaine
So, sorry, but I cannot sayt I understood the whole of it: The RDM is stricter for the SSL, or is it the "linux" box ?
As mentionned: my setup was an all fresh install, with a new "linux" machine, ubuntu 20, ubuntu 22 and elementary os 6.1, all same trouble...
Did I do something weird? or am I the only one to be on a fresh install and being testing the linux version of RDM ??? :-|
Have a nice day! And again: Great work !
It's the framework that RDM runs on that is has a stricter SSL policy.
If you ever work with RDM Linux before, it was using Mono. We recently switch to .net6 which doesn't allow TLS 1.1 out of the box.
You did nothing wrong. MySQL/MariaDB could change their default install to use TLS 1.2 however.
Two other users had problems connecting to their data source upon switching to the .net6 version of RDM Linux.
They were both trying to connect to a MS SQL Server data source.
Internally, we have a dedicated security team that keeps our server secure so we had no issue with TLS 1.1
I could sticky a post on the forum to address this issue.
Jonathan Lafontaine
Ok ok,
Well; GREAT work again, and keep on getting this great job going!
:-D
Talk to you soon !!! ...
Any news about the openvpn client support ?
Yes, there is.
We are working on VPN support at the moment.
It won't specifically be openvpn support, however.
There are too many ways to support each vpn solution so we are implementing a custom vpn entry.
That entry will rely on cli commands to operate the VPN. That should allow support for most vpn out there.
Jonathan Lafontaine