Connecting Oracle GoldenGate Veridata to SSL-Enabled Mongo Database

8.11 Connecting Oracle GoldenGate Veridata to SSL-Enabled Mongo Database

General Keystore and Truststore Setup:

Add certificates Truststore Certificates to vdtDBAgentTruststore.p12
Add Keystore Certificates certificates to vdtDBAgentKeystore.p12

Store the truststore and keystore passwords in the agent's wallet. The agent will retrieve these passwords during SSL/ TLS connections to the database.

Note:

All keystores must be created in the agent_deployment_location/config/certs directory.

Steps to store Truststore and Keystore password for SSL

Navigate to the agent deployment location:
```
cd agent_deploy_location
```
Run the configuration script:
```
./configure_agent_ssl.sh
```
Follow the prompts to provide the truststore and keystore details, which will be stored in the agent wallet.

The stored passwords will be used by the agent when connecting to the database via SSL/TLS.

Create a Truststore:

keytool -importcert -file ca.pem -alias mongoCA -keystore
vdtDBAgentTruststore.p12 -storetype PKCS12 -storepass changeit -noprompt

Create a Keystore:

keytool -importcert -file ca.pem -alias mongoCA -keystore
vdtDBAgentKeystore.p12 -storetype PKCS12 -storepass changeit -noprompt

SSL Syntax: database.url=mongodb://<username>:<password>@localhost:27017/?tls=true

Example URL: database.url=mongodb://admin:admin@localhost:27017/?tls=true

Parent topic: Secure