Teiid 2-way SSL- connection successful even without the Truststore

Question

I have a teiid embedded server and I am trying to connect to a vds on that server through 2-way SSL from my remote client by passing the teiid SSL properties in SystemProperties as per the teiid documentation at: http://teiid.github.io/teiid-documents/12.3.x/content/client-dev/SSL_Client_Connections.html

The connection is successful even without the truststore which is a mandatory property.

Code snippet to replicate this issue:

  Properties properties = new Properties();
  properties.put("user", "admin");
  properties.put("password", "admin");

  System.setProperty("org.teiid.ssl.keyStore", "C:/truststore.p12");
  System.setProperty("org.teiid.ssl.keyStorePassword", "testssl");
  System.setProperty("org.teiid.ssl.trustAll", "false");

  DriverManager.registerDriver(new TeiidDriver());
  Connection connection1 = DriverManager.getConnection("jdbc:teiid:testvds@mms://localhost:32750", properties);
  if (connection.isValid(1000))
  {
    System.out.println("Connection success");
  }

In this case it should have failed. Can you please let me know if this is an issue or I am missing something on my end.

Thanks, Megha

question from:https://stackoverflow.com/questions/65557880/teiid-2-way-ssl-connection-successful-even-without-the-truststore

Answer 1

Can you elaborate on the server side settings? As the other user is getting at, if the server key is already trusted by the default java trust store you don't need additional client settings.