Validate Server Certificate
- Last Updated: July 30, 2025
- 1 minute read
- DataDirect Connectors
- ODBC
- MongoDB 8.0
- Documentation
Attribute
ValidateServerCertificate (vsc)
Purpose
Determines whether the driver validates the certificate that is sent by the MongoDB server when SSL encryption is enabled. When using SSL server authentication, any certificate that is sent by the server must be issued by a trusted Certificate Authority (CA).
Valid Values
0 | 1
Behavior
If set to 1 (true), the driver validates the certificate that is sent by the server. Any certificate from the server must be issued by a trusted CA in the truststore file. If the Host
Name In Certificate (HostNameInCertificate) option is specified, the driver also validates the certificate using a host name. The Host Name In Certificate option is optional and provides additional security against man-in-the-middle (MITM) attacks by ensuring that the server the driver is connecting to is the server that was requested.
If set to 0 (false), the driver does not validate the certificate that is sent by the server. The driver ignores any truststore information that is specified by the Truststore
(TrustStore) and Truststore
Password (TrustStorePassword) options or Java system properties.
Notes
- Truststore information is specified using the Truststore and Truststore Password options or by using Java system properties.
- Allowing the driver to trust any certificate that is returned from the server even if the issuer is not a trusted CA is useful in test environments because it eliminates the need to specify truststore information on each client in the test environment.
Default Value
1 (true)