The basic MySQL database connection is configured to establish an encrypted connection by default if the server supports encrypted connections or an unencrypted connection if not. Use the following configuration options in the SSL tab to adjust your encryption settings:
-
SSL Mode
-
DisableEstablishes an unencrypted connection.
-
Preferred(default)Establishes an encrypted connection if the server supports encrypted connections, falling back to an unencrypted connection if an encrypted connection cannot be established.
-
RequireCauses the connection attempt to fail if an encrypted connection cannot be established.
-
Require and Verify CARequires an encrypted connection and also performs verification against the server Certificate Authority (CA) certificate file.
-
Require and Verify IdentityPerforms verification against the server CA certificate file and against the server host name in its certificate.
-
-
Path to Certificate Authority file for SSL
The path name of the CA certificate file. This option, if used, must specify the same certificate used by the server.
-
Path to Client Certificate file for SSL
The path name of the client public key certificate file.
-
Path to Client Key file for SSL
The path name of the client public key certificate file.
-
Separated list of permissible ciphers to use for SSL encryption (optional)
The list of permissible encryption ciphers for connections to use. Specify a list of one or more cipher names, separated by colons. For information about which encryption ciphers MySQL supports, see Encrypted Connection TLS Protocols and Ciphers.