Layer7 API Management

Hi.

As far as I could test, I couldn't install  on MySQL with SSL but enable it after install.

Before gateway database creation:
- Disable SSL in MySQL
- change the MySQL properties log_bin_trust_function_creators to ON
Execute ssgconfig:
- the user should be <user>@<mysql-server-name>
- create database


After database creation
- Restore SSL in MySQL
- Add the following string to the end of the /opt/SecureSpan/Gateway/node/default/etc/conf/node.properties file:
l7.mysql.url.parameters.extra=&useSSL=true&verifyServerCertificate=false

- execute ALTER USER <user>@<host> require ssl; on mysql
- restart gateway


------------------------------
Sr. Consultant Services
HCL Enterprise Studio
------------------------------

Original Message:
Sent: 05-16-2019 01:13 PM
From: Ab Ba
Subject: APIGatway installation on AZURE with azure mysql.. SSL connection issue

How do we connect to MS Azure mysql instance during APIGatway instalaltion on Azure instance? This is what I am trying to do -

1- Install APIGateway on Microsoft Azure

2- During installation, I choose to connect to a mysql provided by Azure

3- I run into following error-

   Error creating database when saving configuration 'Cannot create database: 'SSL connection is required. Please specify SSL options and retry.' [code:28,000, AUTHORIZATION_FAILURE]'  

4- Turns out SSL is by default enabled and enforced by Azure mySQL and Microsoft recommends using its cert on the client side to connect - https://docs.microsoft.com/en-us/azure/mysql/howto-configure-ssl

 

Q- How do I configure ApiGateway/SSG to be able to connect to azure mysql? Where/which cert/keystore file on ssg need to have this mysql cert? Looking for Instructions/advice

 

Thanks

AB