MariaDB [(none)]> SHOW GLOBAL VARIABLES LIKE 'tls_version';
|
+---------------+---------+
|
| Variable_name | Value |
|
+---------------+---------+
|
| tls_version | TLSv1.2 |
|
+---------------+---------+
|
1 row in set (0.001 sec)
|
|
MariaDB [(none)]> SHOW VARIABLES LIKE '%SSL%';
|
+---------------------+-------------------------------------+
|
| Variable_name | Value |
|
+---------------------+-------------------------------------+
|
| have_openssl | NO |
|
| have_ssl | YES |
|
| ssl_ca | /opt/app/mysql/data/ca-cert.pem |
|
| ssl_capath | |
|
| ssl_cert | /opt/app/mysql/data/server-cert.pem |
|
| ssl_cipher | |
|
| ssl_crl | |
|
| ssl_crlpath | |
|
| ssl_key | /opt/app/mysql/data/server-key.pem |
|
| version_ssl_library | WolfSSL 4.3.0 |
|
+---------------------+-------------------------------------+
|
10 rows in set (0.001 sec)
|
|
MariaDB [(none)]> ALTER USER 'external_user'@'%' REQUIRE SSL;
|
Query OK, 0 rows affected (0.004 sec)
|
|
MariaDB [(none)]> select user, host, ssl_type, ssl_cipher, x509_issuer, x509_subject from mysql.user where user='external_user';
|
+---------------+------+----------+------------+-------------+--------------+
|
| User | Host | ssl_type | ssl_cipher | x509_issuer | x509_subject |
|
+---------------+------+----------+------------+-------------+--------------+
|
| external_user | % | ANY | | | |
|
+---------------+------+----------+------------+-------------+--------------+
|
1 row in set (0.001 sec)
|
|
MariaDB [(none)]>
|