community.sap_libs icon indicating copy to clipboard operation
community.sap_libs copied to clipboard

Published 20 hours ago verified publisher icon sap-linuxlab

sap_hdbsql module: SECURE Connection

Open stm85 opened this issue 1 year ago • 1 comments

Summary

Hi,

The configured trusted Part

    if encrypted is True:
        command.extend([' -attemptencrypt'])

could not work from my perspektive in most of the cases.

ERROR in our Landscape:

/usr/sap/HDB/HDB00/exe/hdbsql -e -attemptencrypt -n localhost -i 00 -d HDB-u SYSTEM -p 'password' "\s"

==============================================================================
== SECURITY WARNING: The encrypted communication attempt failed. Retrying   ==
==                   the connection attempt without encryption options.     ==
==============================================================================

I've changed the module part to the following one

    if encrypted is True:
        command.extend(['-e' , '-ssltrustcert', '-sslcreatecert'])

this solution is working fine in our landscape

Issue Type

Feature Idea

Component Name

hdbsql

Additional Information

Code of Conduct

  • [X] I agree to follow the Ansible Code of Conduct

stm85 avatar Mar 28 '24 09:03 stm85

Hi @stm85 sounds like a good improvement. I will try to implement it as soon as possible.

rainerleber avatar Apr 15 '24 13:04 rainerleber