How to encrypt DB connections with Ephesoft Transact

Overview

Some users may need to encrypt the connection to a DB from Ephesoft Transact. To do so, the jtds driver that Transact uses must be updated.

    1. Download the updated driver from here (http://download.ephesoft.com/Ephesoft_Product/Wiki_links/jtds-1.3.1.zip)
    2. Extract JAR file to a temporary location
    3. Stop Ephesoft server
    4. Go to Ephesoft\JavaAppServer\lib and back up existing driver (jtds*.jar)
    5. Paste updated jtds-1.3.1.jar in the aforementioned directory
    6. Go to Ephesoft\Application\WEB-INF\lib and back up existing driver (jtds*.jar)
    7. Paste updated jtds-1.3.1.jar in the aforementioned directory
    8. If updating the connection for Ephesoft’s DBs (ephesoft, report, report_archive):
        1. Edit Ephesoft\JavaAppServer\conf\server.xml to add the following to all available connection strings in JNDI resources:

      [code]encrypt=true;trustServerCertificate=true;ssl=require[/code]

      The complete string should look something like this:

      [code]jdbc:jtds:sqlserver://<servername>;databaseName=<databasename>;encrypt=true;trustServerCertificate=false;hostNameInCertificate=*.database.windows.net;loginTimeout=30;ssl=require[/code]

        1. Enable SSL under SQL Server Configuration manager

      image007.jpg

        1. In the Certificate tab, select a certificate

      image008.jpg

      1. Go to step 10
    9. If updating the connection from Ephesoft’s Connection Manager:
      1. Configure the connection normally and then add the following:

[code]encrypt=true;trustServerCertificate=true;ssl=require[/code]

The complete string should look something like this:

[code]jdbc:jtds:sqlserver://<servername>;databaseName=<databasename>;encrypt=true;trustServerCertificate=false;hostNameInCertificate=*.database.windows.net;loginTimeout=30;ssl=require[/code]

  1. Restart the server