Disable SSL Encryption for your MySQL Database

This section is only applicable if you have enabled SSL encryption for your MySQL database in version 6.5 SP1 and above. The RiskVision Upgrade Setup will not work unless you disable your SSL encryption settings. 

To disable SSL encryption:

  1. Check to see if the my.ini file in the %AGILIANCE_HOME%\MySQL\config directory is backed up. If not, see Backing up the RiskVision Server Configuration for more information.
  2. Go to the %AGILIANCE_HOME%\MySQL\config directory. Open the my.ini file using a text editor, locate the Client and Server sections in the my.ini file, and comment the lines shown below in the respective sections.
  • Client Section
    • ssl-ca="~/ca-cert.pem"
    • ssl-cert="~/client-cert.pem"
    • ssl-key="~/client-key.pem"
    • ssl-cipher=DHE-RSA-AES256-SHA
  • Server Section
    • ssl-ca="~/ca-cert.pem"
    • ssl-cert="~/server-cert.pem"
    • ssl-key="~/server-key.pem"
    • ssl-cipher=DHE-RSA-AES256-SHA

Where, "~" denotes certificate's directory.

  1.  Go to the %AGILIANCE_HOME%\config directory. Open the agiliance.properties file using a text editor, comment the property database.mysql.useSSL=true and specify the database hostname in the file.
  2. Connect to your MySQL database and run the following commands to disable SSL encryption:

GRANT USAGE ON agiliance.* TO 'agiliance'@' <DB hostname> REQUIRE NONE;

GRANT USAGE ON agiliance.* TO 'reportuser'@' <DB hostname> REQUIRE NONE;

FLUSH PRIVILEGES;

  1. Restart the RiskVision Tomcat and RiskVision MySQL services to apply the latest changes.