Reputation: 1
Db2 Warehouse: How to connect using SSL with ibm data server driver
While trying to connect to Db2 Warehouse Local from clpplus as below giving an error
````
clpplus -nw db2inst1@WP
````
jcc][t4][2030][11211][4.24.92] A communication error occurred during operations on the connection's underlying socket, socket input stream, or socket output stream. Error location: Reply.fill() - socketInputStream.read (-1). Message: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target. ERRORCODE=-4499, SQLSTATE=08001
My DB is SSL enabled and I have downloaded IBM data server client on Mac and created db2dsdriver.cfg as below
db2cli writecfg add -database BLUDB -host db2inst1.zc.com -port 50001
db2cli writecfg add -dsn WP -database BLUDB -host db2inst1.zc.com -port 50001
db2cli writecfg add -database BLUDB -host db2inst1.zc.com -port 50001 -parameter "SecurityTransportMode=SSL" `
Generally when connecting from dbvizualizer we use the below db connection url
BLUDB:sslConnection=true;sslTrustStoreLocation=/Users/Documents/truststore/ibm-truststore.jks;sslTrustStorePassword=<>;
I even tried to create the file as below but the same error persists
db2cli writecfg add -database BLUDB -host db2inst1.zc.com -port 50001
db2cli writecfg add -dsn WP -database BLUDB -host db2inst1.zc.com -port 50001
db2cli writecfg add -database BLUDB -host db2inst1.zc.com -port 50001 -parameter "SecurityTransportMode=SSL"
db2cli writecfg add -database BLUDB -host db2inst1.zc.com -port 50001 -parameter "sslTrustStoreLocation=/Users/Documents/truststore/ibm-truststore.jks"
db2cli writecfg add -database BLUDB -host db2inst1.zc.com -port 50001 -parameter "sslTrustStorePassword=<>"
Actually, I'm trying to connect to Db2 Warehouse using ibm_db in a Juypter Notebook but for this, the DB should be cataloged and I'm unable to use the notebook because of this issue and also on mac db2 client is not supported and hence I have to go with data server client. So I need help in achieving this
Upvotes: 0
Views: 1368
Answers (1)
Reputation: 17118
To not have everything as comment, let's start composing an answer....
If you want to connect to Db2 Warehouse using clpplus and using SSL, there were changes starting in one of the latest versions of Db2 Warehouse. You would need to set up an IBM data server driver configuration file like this:
<configuration>
<dsncollection>
<dsn alias="SSLAMPLE" name="SAMPLE" host="9.121.221.159" port="50001">
</dsn>
</dsncollection>
<databases>
<database name="SAMPLE" host="9.121.221.159" port="50001">
<parameter name="SecurityTransportMode" value="SSL"/>
</database>
</databases>
</configuration>
The above configures an alias SSLAMPLE for the database SAMPLE. With clpplus you would then connect to SSLAMPLE.
Upvotes: 1
Related Questions
- Error when connecting to DB2 with ibm_db with SSL
- What is the correct connection string for SQLDriverConnect function to connect to cataloged Db2 database with SSL?
- How do I connect to Connect to Db2 with JDBC and SSL and avoid the error "A DRDA Data Stream Syntax Error was detected. Reason: 0x3. ERRORCODE=-4499"?
- Db2 (Warehouse) on Cloud: How to use APIKEY or ACCESSTOKEN to connect from CLP?
- DB2 database in Oracle SQL developer with SSL option
- Connection authorization failure occurred. Reason: Invalid GSSAPI server credential. ERRORCODE=-4214, SQLSTATE=28000
- Is connecting to a DB2 database through Port 443 possible
- IBM DB2 JDBC connection to cataloged database via SSL
- Connecting to IBM DB2 10.1 from C#
- SSL DB2 connection failed