HostNameInCertificate
- Last Updated: March 6, 2025
- 1 minute read
- Hybrid Data Pipeline
- Version 4.6
- Documentation
Description
Specifies a host name for certificate validation when SSL encryption is
enabled (EncryptionMethod=SSL) and validation is enabled
(ValidateServerCertificate=true). This property is optional and
provides additional security against man-in-the-middle (MITM) attacks by ensuring
that the server the driver is connecting to is the server that was requested.
Valid values
host_name
where:
- host_name
- is a valid host name.
Behavior
If host_name is specified, the driver compares the specified host name to the DNSName value of the SubjectAlternativeName in the certificate. If a DNSName value does not exist in the SubjectAlternativeName or if the certificate does not have a SubjectAlternativeName, the driver compares the host name with the Common Name (CN) part of the certificate’s Subject name. If the values do not match, the connection fails and the driver throws an exception.
Notes
- If SSL encryption or certificate validation is not enabled, this property is ignored.
- If SSL encryption and validation is enabled and this property is unspecified, the driver uses the server name specified in the connection URL or data source of the connection to validate the certificate.
Default
None
Data type
String
See also
Using data encryption