Thanks for the reply Shawn. What I was asking is whether there is an option to exclude the comms to SQL from SOLR managed encryption as the JDBC driver manages the connection and SOLR is acting as the Client in this instance and is already using encrypted comms via the connection string parameters.
Cheers Paul On 5/23/2019 5:45 AM, Paul wrote: > unable to find > valid certification path to requested target This seems to be the root of your problem with the connection to SQL server. If I have all the context right, Java is saying it can't validate the certificate returned by the SQL server. This page: https://docs.microsoft.com/en-us/sql/connect/jdbc/connecting-with-ssl-encryption?view=sql-server-2017 Talks about a "trustCertificate" property you can set to "true" in the JDBC URL that will cause Microsoft's JDBC driver to NOT validate the server certificate. Alternatively, if the SQL server is sending all the necessary chain certificates, you could place the root cert for the CA that issued the SQL Server certificate in the Java keystore that you're using for SSL on Solr, that would probably also fix it -- because then the SQL cert would validate. Thanks, Shawn -- Sent from: http://lucene.472066.n3.nabble.com/Solr-User-f472068.html