Securing Communication Path between IdentityIQ and Microsoft SQL Server

The certificate created on Microsoft SQL Server must be downloaded on the Client Host where IdentityIQ is installed.
The downloaded certificate must be imported in the keystore used by JRE of IdentityIQ using the following command:
Copy
```
keytool -import -file <absolute path of certificate obtained from MSSQL Server> 
-keystore <cacerts file including the full location> -alias aliasName
```
In the preceding command line, aliasName is the name of the alias.

Adding the server certificate here implies that the client trusts the SQL Server certificate obtained from the Microsoft SQL Server.
The database URL used for connecting to the SQL Server database must have the encrypt connection parameter set to true and trustServerCertificate set to false. For example:
Copy
```
jdbc:sqlserver://<Sql server Hostname>:
<port>;encrypt=true;trustServerCertificate=false;hostNameInCertificate=<Sql server Hostname>
```

Feedback is provided as an informational resource only and does not form part of SailPoint's official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.


	You are here:

Securing Communication Path between IdentityIQ and Microsoft SQL Server

Documentation Feedback