Amazon RDS ?

I am new to this. Can't connect to my RDS account. I am using the MYSQL driver. Should I be using something else?  I am connecting over SSL using an SSL CA file.  I have used the same credentials to connect with other tools.  What is the general guidance to connect to Amazon RDS via SSL ?

5 comments
Comment actions Permalink

Hello,

Could be this issue https://youtrack.jetbrains.com/issue/DBE-1202 . Do you have multi certificate pem file? If so, does it help to split sertificates https://youtrack.jetbrains.com/issue/DBE-1202#comment=27-960174 ?

Are there any errors? Could you post it here?

0
Comment actions Permalink

Yes , seems to be the same issue . I am also using a multi certificate pem file, but dont have the ability to split them - was issued by my IT dept and will be a major hassle to ask them to split it up. My error message is the same as shown in the link you provided.

I assume without splitting the certificates, there is no work around for this?

0
Comment actions Permalink

So no one has successfully connected to an AWS mysql RDS with a bundled SSl certificate?

0
Comment actions Permalink

Sorry I'm not aware of it. I would just advise to double check that the certificate is trusted by JDK which is used to run 0xDBE (see https://intellij-support.jetbrains.com/hc/en-us/articles/206827547 on how it is chosen) and import the certificate into trust store for this JDK: http://stackoverflow.com/a/373307/2000323

0
Comment actions Permalink

Here is my error log now:


[08S01] Communications link failure

The last packet successfully received from the server was 229 milliseconds ago.  The last packet sent successfully to the server was 225 milliseconds ago.
java.lang.RuntimeException: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
 at sun.security.provider.certpath.SunCertPathBuilder.build(SunCertPathBuilder.java:145)
 at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:131)
 at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:280)
 at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:382)
 at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292)
 at sun.security.validator.Validator.validate(Validator.java:260)
 at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:324)
 at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:229)
 at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:124)
 at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1460)
 at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:212)
 at sun.security.ssl.Handshaker.processLoop(Handshaker.java:969)
 at sun.security.ssl.Handshaker.process_record(Handshaker.java:904)
 at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1050)
 at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1363)
 at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1391)
 at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1375)
 at com.mysql.jdbc.ExportControlled.transformSocketToSSLSocket(ExportControlled.java:95)
 at com.mysql.jdbc.MysqlIO.negotiateSSLConnection(MysqlIO.java:4793)
 at com.mysql.jdbc.MysqlIO.proceedHandshakeWithPluggableAuthentication(MysqlIO.java:1635)
 at com.mysql.jdbc.MysqlIO.doHandshake(MysqlIO.java:1207)
 at com.mysql.jdbc.ConnectionImpl.coreConnect(ConnectionImpl.java:2254)
 at com.mysql.jdbc.ConnectionImpl.connectOneTryOnly(ConnectionImpl.java:2285)
 at com.mysql.jdbc.ConnectionImpl.createNewIO(ConnectionImpl.java:2084)
 at com.mysql.jdbc.ConnectionImpl.<init>(ConnectionImpl.java:795)
 at com.mysql.jdbc.JDBC4Connection.<init>(JDBC4Connection.java:44)
 at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
 at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)
 at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
 at java.lang.reflect.Constructor.newInstance(Constructor.java:422)
 at com.mysql.jdbc.Util.handleNewInstance(Util.java:404)
 at com.mysql.jdbc.ConnectionImpl.getInstance(ConnectionImpl.java:400)
 at com.mysql.jdbc.NonRegisteringDriver.connect(NonRegisteringDriver.java:327)
 at com.intellij.database.remote.jdbc.impl.RemoteDriverImpl.connect(RemoteDriverImpl.java:27)
 at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
 at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
 at java.lang.reflect.Method.invoke(Method.java:497)
 at sun.rmi.server.UnicastServerRef.dispatch(UnicastServerRef.java:323)
 at sun.rmi.transport.Transport$1.run(Transport.java:200)
 at sun.rmi.transport.Transport$1.run(Transport.java:197)
 at java.security.AccessController.doPrivileged(Native Method)
 at sun.rmi.transport.Transport.serviceCall(Transport.java:196)
 at sun.rmi.transport.tcp.TCPTransport.handleMessages(TCPTransport.java:568)
 at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run0(TCPTransport.java:826)
 at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.lambda$run$255(TCPTransport.java:683)
 at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler$$Lambda$2/1393287489.run(Unknown Source)
 at java.security.AccessController.doPrivileged(Native Method)
 at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run(TCPTransport.java:682)
 at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
 at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
 at java.lang.Thread.run(Thread.java:745)

0

Please sign in to leave a comment.