Skip to main contentSkip to search
Powered by Zoomin Software. For more details please contactZoomin
Progress DocumentationProgress Documentation
Progress Documentation
  • Home
  • Home
  • EnglishČeštinaDeutsch (Germany)Español (Spain)Français (France)Italiano (Italy)Português (Brasil)日本語Русский (Russia)中文 (简体) (China)中文 (繁體, 台灣) (Taiwan)ar-AR
  • Login

Progress DataDirect for ODBC for Amazon Redshift Wire Protocol Driver User's Guide Release 8.0.0

Summary of security-related options

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
Print
Table of Contents
  • Welcome to the Progress DataDirect for ODBC for Amazon Redshift Wire Protocol Driver
    • What's new in this release?
    • Driver requirements
    • ODBC compliance
    • Version string information
      • getFileVersionString function
    • Data types
      • Retrieving data type information
    • SQL support
    • Additional information
    • Troubleshooting
    • Contacting Technical Support
  • Getting started
    • Configuring and connecting on Windows
      • Configuring a data source
      • Testing the connection
    • Configuring and connecting on UNIX and Linux
      • Environment configuration
      • Test loading the driver
      • Configuring a data source in the system information file
      • Testing the connection
  • Tutorials
    • The Example application
    • Accessing data in Tableau (Windows only)
    • Accessing data in Microsoft Excel from the Data Connection Wizard (Windows only)
    • Accessing data in Microsoft Excel from the Query Wizard (Windows only)
  • Using the driver
    • Configuring and connecting to data sources
      • Configuring the product on UNIX/Linux
        • Environment variables
          • Library search path
          • ODBCINI
          • ODBCINST
          • DD_INSTALLDIR
        • The test loading tool
        • Data source configuration on UNIX/Linux
          • Configuration through the system information (odbc.ini) file
            • Sample default odbc.ini file
        • DSN-less connections
          • Sample odbcinst.ini file
        • File data sources
        • UTF-16 applications on UNIX and Linux
      • Data source configuration through a GUI
        • Advanced tab
        • Security tab
        • Failover tab
        • Pooling tab
        • Authentication tab
      • Using a connection string
      • Password Encryption Tool (UNIX/Linux only)
      • Using a logon dialog box
    • Performance considerations
    • Using failover
      • Connection failover
      • Extended connection failover
      • Select connection failover
      • Guidelines for primary and alternate servers
      • Using client load balancing
      • Using connection retry
      • Configuring failover-related options
        • A connection string example
        • An odbc.ini File example
    • Using security
      • Data encryption across the network
      • TLS/SSL encryption
        • Certificates
        • TLS/SSL server authentication
        • TLS/SSL client authentication
        • Generating TLS/SSL certificates using OpenSSL 3.5-compliant algorithms
        • Designating an OpenSSL library
      • Summary of security-related options
      • Authentication
        • Basic authentication
        • Azure Active Directory authentication
        • JWT authentication
    • Isolation and lock levels supported
    • Unicode support
    • Binding parameter markers
    • Persisting a Result Set as an XML Data File
    • Packet logging
  • Connection option descriptions
    • Alternate Servers
    • Application Using Threads
    • Authentication Method
    • Auto Create
    • AWS Cluster
    • AWS DB Group
    • AWS DB User
    • AWS Region
    • Azure Client ID
    • Azure Client Secret
    • Azure Tenant ID
    • Connection Pooling
    • Connection Reset
    • Connection Retry Count
    • Connection Retry Delay
    • Crypto Protocol Version
    • CryptoLibName
    • Database Name
    • Data Source Name
    • Description
    • Enable FIPS
    • Enable SQLDescribeParam
    • Encryption Method
    • Extended Column MetaData
    • Failover Granularity
    • Failover Mode
    • Failover Preconnect
    • Fetch TSWTZ as Timestamp
    • Host Name
    • Host Name In Certificate
    • IANAAppCodePage
    • Initialization String
    • Key Password
    • Key Store
    • Key Store Password
    • Load Balance Timeout
    • Load Balancing
    • Login Timeout
    • Max Char Size
    • Max Pool Size
    • Max Varchar Size
    • Min Pool Size
    • OpenSSLConfigFile
    • OpenSSLProviderPath
    • Password
    • Port Number
    • Proxy Host
    • Proxy Mode
    • Proxy Password
    • Proxy Port
    • Proxy User
    • Query Timeout
    • Report Codepage Conversion Errors
    • Show Selectable Tables
    • SSLLibName
    • TCP Keep Alive
    • Transaction Error Behavior
    • Truststore
    • Truststore Password
    • User Name
    • Validate Server Certificate
    • Web Identity Token
  • Copyright
Table of Contents

Summary of security-related options

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
Print
  • Last Updated: April 8, 2026
  • 1 minute read
    • DataDirect Connectors
    • ODBC
    • Amazon Redshift 8.0
    • Documentation

The following table summarizes how security-related connection options work with the driver. The connection options are listed alphabetically by the GUI name that appears on the driver Setup dialog box. The connection string attribute name is listed immediately after the GUI name in parentheses. See "Connection option descriptions" for details about configuring the options.

Table 1. Summary: Data Encryption Connection Options
Option Description
Crypto Protocol Version (CryptoProtocolVersion) Specifies the cryptographic protocols to use when SSL is enabled using the Encryption Method connection option (EncryptionMethod=1 | 6).

Default: TLSv1.2, TLSv1.3
CryptoLibName (CryptoLibName) The absolute path for the OpenSSL library file containing the cryptographic library to be used by the data source or connection when SSL is enabled. The cryptograpic library contains the implementations of cryptographic algorithms the driver uses for data encryption.

Default: Empty string
Enable FIPS Determines whether the OpenSSL library uses cryptographic algorithms from the FIPS provider or the default provider when TLS/SSL encryption is enabled (Encryption Method=1).

If disabled, the OpenSSL library uses cryptographic algorithms from the default provider.

If enabled, the OpenSSL library uses cryptographic algorithms from the FIPS provider.

Default: Disabled
Encryption Method (EncryptionMethod) The method the driver uses to encrypt data sent between the driver and the database server.

If set to 0 (No Encryption), data is not encrypted.

If set to 1 (SSL), data is encrypted using the SSL protocols specified in the Crypto Protocol Version connection option.

If set to 6 (RequestSSL), the login request and data are encrypted using SSL if the server is configured for SSL. If the server is not configured for SSL, an unencrypted connection is established.

Default: 0 (No Encryption)
Host Name In Certificate (HostNameInCertificate) A host name for certificate validation when SSL encryption is enabled (Encryption Method=1 | 6) and validation is enabled (Validate Server Certificate=1).

Default: None
Key Password (KeyPassword) Specifies the password used to access the individual keys in the keystore file when SSL is enabled (Encryption Method=1 | 6) and SSL client authentication is enabled on the database server.

Default: None
Key Store (Keystore) The name of the directory containing the keystore file to be used when SSL is enabled (EncryptionMethod=1 | 6) and SSL client authentication is enabled on the database server.

Default: None
Key Store Password (KeystorePassword) The password used to access the keystore file when SSL is enabled (Encryption Method=1 | 6) and SSL client authentication is enabled on the database server.

Default: None
SSLLibName (SSLLibName) The absolute path for the OpenSSL library file containing the SSL library to be used by the data source or connection when SSL is enabled. The SSL library contains the implementations of SSL protocols the driver uses for data encryption.

Default: Empty string
Trust Store (Truststore) The directory that contains the truststore file and the truststore file name to be used when SSL is enabled (EncryptionMethod=1 | 6) and server authentication is used.

Default: None
Trust Store Password (TruststorePassword) Specifies the password that is used to access the truststore file when SSL is enabled (EncryptionMethod=1 | 6) and server authentication is used.

Default: None
User Name (LogonID) The default user ID used to connect to your database.
Validate Server Certificate (ValidateServerCertificate) If enabled, the driver validates the certificate that is sent by the database server. Any certificate from the server must be issued by a trusted CA in the truststore file. If the Host Name In Certificate option is specified, the driver also validates the certificate using a host name.

If disabled, the driver does not validate the certificate that is sent by the database server. The driver ignores any truststore information specified by the Trust Store and Trust Store Password options.

Default: Enabled
Related Links
  • Connection option descriptions
TitleResults for “How to create a CRG?”Also Available inAlert