skip to main content
Using the ODBC Client : Specifying ODBC Connection Attributes : Truststore
 

Truststore

Attribute

Truststore (TS)

Description

Determines the truststore used by the client when SSL is enabled (Encrypted=1). The truststore contains a list of root certificates issued by trusted Certificate Authorities (CA). See SSL Server Authentication for more information.
When a truststore is defined, the supported cipher suites in the ODBC Client are limited to those cipher suites that are supported by server certificates. See SSL Cipher Suites for more information.
Note: The truststore and keystore files may be the same file.

Valid Values

path | system
where path is the path to the truststore file.
If set to specify the path of a truststore file, the client verifies the server certificate against the root certificates stored in the specified truststore file.
Note: The truststore file can either be in PKCS #12 format or a comma-separated list of root certificates issued by valid Certificate Authorities (CAs). When the Truststore attribute is set to specify the path of a truststore file, the password to unlock the truststore file should also be provided using the TruststorePassword attribute. If the password is not provided, the truststore file is assumed to be a comma-separated list of root certificates. For example, C:\cacerts\myca1.cer,C:\cacerts\myca2.cer. These certficates are DER encoded.

If set to system, the client verifies the server certificate against the root certificates stored in Windows certificate store.

Default

None

GUI Tab

Security tab