Adding a connection to an existing Amazon RDS for MySQL Platform connection fails

Last updated: Nov 26, 2024

When you add a connection to an existing Amazon RDS for MySQL Platform connection with SSL enabled, it fails.

Symptoms

When you try to add a connection to an existing Amazon RDS for MySQL Platform connection in Data Virtualization, you might see an error message that is similar to the following message.

Received fatal alert: unknown_ca was thrown while evaluating an expression.

Causes

Amazon RDS for MySQL instances have SSL enabled. The driver that is used to connect to Amazon RDS for MySQL instances uses the default keyStore for the client SSL certificate. This keystore exists in Data Virtualization and contains the certificates that are used internally. However, this keystore is not accepted by Amazon RDS for MySQL because the certificate authority is not in their accepted certificate authority list. This list is not configurable.

Resolving the problem

You must prevent the driver from using the default client keystore by adding the following to the Additional Properties field when you create the connection in Data Virtualization.

fallbackToSystemKeyStore=false

From the Platform connections page, modify the parameters of the Amazon RDS for MySQL connection and try to connect to the existing Platform connection again.

Was the topic helpful?

0/1000