TLS 1.2 validate sever certificate issue: "Cannot load trust store"
Article ID: 296519
Updated On:
Products
VMware Tanzu Greenplum
Issue/Introduction
Users are getting the error "Cannot load trust store" when connecting to the database using the Progress ODBC driver. TLS 1.2 is enabled with validate server certificate.
Environment
Product Version: 5.26
Resolution
The client is trying to validate the server certificate. "ValidateServerCertificate" is set to 1 in the client driver. The client needs to read the root or Certified Authority (CA) certificate from the Truststore to validate the certificate provided by the Greenplum DB. The error indicates that the client cannot read the Truststore file.
Keystore is used to store private key and identity certificates that a specific program should present to both parties (server or client) for verification.
Truststore is used to store certificates from a Certified Authority (CA) that verify the certificate presented by the server in SSL connection.
See https://www.educative.io/edpresso/keystore-vs-truststore for some further information on keystores and truststores.
There are a number of articles on the progress website for this error.
The following articles can help resolve the issue:
Keystore is used to store private key and identity certificates that a specific program should present to both parties (server or client) for verification.
Truststore is used to store certificates from a Certified Authority (CA) that verify the certificate presented by the server in SSL connection.
See https://www.educative.io/edpresso/keystore-vs-truststore for some further information on keystores and truststores.
There are a number of articles on the progress website for this error.
The following articles can help resolve the issue:
- https://knowledgebase.progress.com/articles/Knowledge/000035243
- https://knowledgebase.progress.com/articles/Knowledge/7799
Feedback
Yes
No
Powered by
