Before you enable the JDBC encryption option for PostgreSQL servers in Connect CDC Director, you must:
-
configure PostgreSQL to use a TLS certificate for encrypted communication.
-
install and enable OpenSSL on the server and client.
To enable JDBC encryption for PostgreSQL servers, you must also configure Connect CDC to use the PostgreSQL server key and root certificate to validate encrypted connections. Specifically, the client requires the following 3 files in the %appdata%\postgresql directory for Windows and in the ~/.postgresql/ directory for Linux:
-
root.crt (trusted root certificate)
-
postgresql.crt (client certificate)
-
postgresql.key (private key)