Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Documentation on Enabling SSL/TLS support for hana. #21994

Merged
merged 1 commit into from
Feb 28, 2024
Merged

Documentation on Enabling SSL/TLS support for hana. #21994

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
36 changes: 35 additions & 1 deletion presto-docs/src/main/sphinx/connector/hana.rst
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,6 +24,40 @@ connection properties as appropriate for your setup:
connection-user=root
connection-password=secret

Connection security
-------------------

The JDBC driver and connector automatically use Transport Layer Security (TLS) encryption and certificate validation. This requires a suitable TLS certificate configured on your Hana database host.

To enable encryption in the connection string, use the ``encrypt`` property:

.. code-block:: none

connection-url=jdbc:sap://<host>:<port>?encrypt=true;

Other SSL configuration properties that can be configured using the ``connection-url``:

SSL Configuration Properties
^^^^^^^^^^^^^^^^^^^^^^^^^^^^
================================================== ==================================================================== ===========
Property Name Description Default
================================================== ==================================================================== ===========
``validateCertificate`` Indicates that the SSL certificate presented by the server ``true``
should be validated against the truststore specified.

``trustStoreType`` File format of the truststore file, for example ``JKS``.

``trustStore`` The path to the truststore file.

``trustStorePassword`` The password for the truststore.
================================================== ==================================================================== ===========

A connection string using a truststore would be similar to the following example:

.. code-block:: none

connection-url=jdbc:sap://<host>:<port>?encrypt=true&validateCertificate=true&trustStore=path/to/truststore.jks&trustStorePassword=password&trustStoreType=jks

Multiple HANA Databases or Servers
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

Expand Down Expand Up @@ -97,4 +131,4 @@ The following SQL statements are not supported:
* :doc:`/sql/revoke`
* :doc:`/sql/show-grants`
* :doc:`/sql/show-roles`
* :doc:`/sql/show-role-grants`
* :doc:`/sql/show-role-grants`
Loading