Learn how to secure Tungsten Cluster with SSL/TLS for internal cluster communications and for application traffic through the Tungsten Connector, with practical guidance on certificates, validation, and common pitfalls like hostname/DNS mismatches.
This session explains what “SSL” means in practice (TLS), why organizations require it (encryption, compliance, man-in-the-middle protection), and how keystores/truststores work for Java-based services in Tungsten Cluster.
You’ll walk through enabling security controls in tungsten.ini, generating and distributing keystore/truststore files correctly, updating an existing cluster with the required tpm update flags, and verifying encryption via cctrl and trepctl URI changes.
Finally, it covers Connector and MySQL SSL options—what you must configure on MySQL, how Bridge mode relies on direct MySQL SSL, and how to test an SSL connection from a client.