Getting Data In

SSL Error Splunk DB connect add-on

kiranpanchavat1
Path Finder

Hello SPLUNKERS,

We are seeing this error while integrating the SQL DB using DB connect add-on . Kindly let me know what the error is. 

Version : 

It is Sql Server 2014 EE

The driver could not establish a secure connection to SQL Server by using Secure Sockets Layer (SSL) encryption. Error: "Certificates do not conform to algorithm constraints". ClientConnectionId:xxxxxxxxxxxxxxx
Labels (1)
1 Solution

venkatasri
SplunkTrust
SplunkTrust

Hi @kiranpanchavat1 

DB Connect underlying uses the JDBC driver's, looking at your SQL server version it could be compatible with old TLS/SSL v1 ciphers which might not be compatible with latest DB Connect driver/ Java version.

This is more likely a driver compatibility issue rather than Splunk core issue. Investigate Java + SQL server forums might help with clues to fix it. 

SQL Server JDBC Error on Java 8: The driver could not establish a secure connection to SQL Server by...

---

An  upvote would be appreciated if this reply helps!

View solution in original post

kiranpanchavat1
Path Finder

@venkatasri 

Thanks for the update. 

0 Karma

venkatasri
SplunkTrust
SplunkTrust

Hi @kiranpanchavat1 

DB Connect underlying uses the JDBC driver's, looking at your SQL server version it could be compatible with old TLS/SSL v1 ciphers which might not be compatible with latest DB Connect driver/ Java version.

This is more likely a driver compatibility issue rather than Splunk core issue. Investigate Java + SQL server forums might help with clues to fix it. 

SQL Server JDBC Error on Java 8: The driver could not establish a secure connection to SQL Server by...

---

An  upvote would be appreciated if this reply helps!

venkatasri
SplunkTrust
SplunkTrust

@kiranpanchavat1 if you resolved it post solution that would help other users.

0 Karma

kiranpanchavat1
Path Finder

@venkatasri 

 

output from my heavy forwarder,

# openssl s_client -connect x.x.x.x:8089 -showcerts 

New, TLSv1.2, Cipher is xxxxxxxxxxxxxxxxxxx

Server public key is 2048 bit

Secure Renegotiation IS supported

Compression: NONE

Expansion: NONE

No ALPN negotiated

SSL-Session:

    Protocol  : TLSv1.2

 

 

0 Karma

kiranpanchavat1
Path Finder

@venkatasri 

Any update on the below. 

FYI : SQL team is not using any SSL on server level . 

 

The driver could not establish a secure connection to SQL Server by using Secure Sockets Layer (SSL) encryption. Error: "Certificates do not conform to algorithm constraints". ClientConnectionId:31a96919-d92e-4a61-9cff-c5667d4b4976

 

Do i need to change any connection type because i used MS-SQL SERVER USING MS GENERIC DRIVER AND MYSQL AND MS-SQL SERVER USING MS GENERIC DRIVER WITH KERBEROS AUTHENTICATION

venkatasri
SplunkTrust
SplunkTrust

@kiranpanchavat1  Haven't worked with SQL Server though this is purely driver compatibility/ SSL compability issues between driver / SQL Server. did you check other forums specific to this JDBC  issue?

https://social.technet.microsoft.com/Forums/en-US/07ca9eec-a092-436e-b960-3fe15bc36389/unable-to-ope...

Lower the TLS version and try and read the SQL Server version docs to find the suitable driver. You might need to replace the driver of DB-Connect if the latest version of JDBC driver do not support old SQL server version.

--

an upvote would be appreciated if this reply helps !

Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In December, the Splunk Threat Research Team had 1 release of new security content via the Enterprise Security ...

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

(This is the first of a series of 2 blogs). Splunk Enterprise Security is a fantastic tool that offers robust ...

Index This | What are the 12 Days of Splunk-mas?

December 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...