Oh, and you also need a special JDBC url of one of the following forms:


I found this information here: http://db.apache.org/derby/docs/dev/adminguide/cadminsslclient.html


On Sat, Jun 4, 2011 at 11:39 AM, Robert Manning <robert.m.manning@gmail.com> wrote:

SQuirreL doesn't currently provide direct support for specifying things like keystore, keystore password, truststore and truststore password (probably a feature request away). However, the JVM allows you to specify these as system properties using command line arguments.  For example:

java -Djavax.net.ssl.keyStore=/home/username/identity.jks -Djavax.net.ssl.keyStorePassword=mypassword -Djavax.net.ssl.trustStore=/home/username/trustore.jks javax.net.ssl.trustStorePassword=mytrustpassowrd ...

These would need to be added to the line that runs the Java command in squirrel-sql.sh or squirrel-sql.bat.

Is the derby server configured to do basic or peer authentication ? If its basic, then you only need the truststore which contains the server's cert (or ideally, the CA cert that signed the server's cert). However, if the server is configured for peer authentication, then you will need client certificates that are signed by a CA whose certificate is configured to be trusted on the server. Basic is relatively easy, peer authentication (or client authentication) can be a real PITA.


On Sat, Jun 4, 2011 at 8:02 AM, Thomas Hill <Thomas.K.Hill@t-online.de> wrote:

I would like to use squirril (current version on Windows) to connect to
an Apache Derby Network Server. Challenge is: the Apache Derby Server is
running SSL and therefore only accepts SSL connections. Is it possible
to use squirril in such a scenario? If so, where would I need to
specific the keystore files to be used for connecting?


Simplify data backup and recovery for your virtual environment with vRanger.
Installation's a snap, and flexible recovery options mean your data is safe,
secure and there when you need it. Discover what all the cheering's about.
Get your free trial download today.
Squirrel-sql-users mailing list