Solved

JDBC connecting to SQL error

Posted on 2015-01-14
11
1,436 Views
Last Modified: 2015-02-06
I have a cognos reports server that is connecting to a SQL 2008R2 database and after a recent restart the JDBC driver is giving an error message Pasted at bottom.
I cannot figure out why it wants to connect  SSL all of a sudden. The OS is Windows Server 2008R2 The JRE is 6.0 SQL 2008R2 x64
I have checked the SQL server Forced Encryption is set to NO
I have checked that FIPS is not enabled in group policy and the registry on both servers.
I have verified I can connect to the SQL server using other means I. e.  SQL Studio, telnet , SQLPing, UDL connection
I cannot figure out why it is trying to connect SSL It connect correctly before the restart


:[trycatch] Caught exception: com.microsoft.sqlserver.jdbc.SQLServerException:
the driver could not establish a secure connection to SQL Server by using Secure
Sockets Layer (SSL) encryption. Error: "SQL Server did not return a response. The connection has been closed.".
     [echo] ERROR: com.microsoft.sqlserver.jdbc.SQLServerException: The driver
could not establish a secure connection to SQL Server by using Secure Sockets Lay
er (SSL) encryption. Error: "SQL Server did not return a response. The connection has been closed.".
0
Comment
Question by:Robert Timmons
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
11 Comments
 
LVL 20

Expert Comment

by:Marten Rune
ID: 40550722
have you looked in the sql server errorlog?
This will tell you if SQL is involved or if its a OS/infrastructure problem

If entrys, then SQL is involved somehow. If no entrys, look at infrastructure.
0
 

Author Comment

by:Robert Timmons
ID: 40551099
I have checked SQL logs and it does not look like it is even getting that far since I see nothing in the logs and other applications with DBs on same machine are connecting just fine. So I agree it must be infrastructure. Just figuring out what that piece is can be a challenge. I see patches were installed on the 1-8-2015 but I am not aware of a patch that would do this.
0
 
LVL 20

Expert Comment

by:Marten Rune
ID: 40551134
If you create a ODBC Connection on the server, is the test successful?
if so, you can isolate it to the Java driver.

These have a history (according to me) of problem handling complex passwords, named instances and ports.

//Marten
0
Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

 
LVL 30

Expert Comment

by:Rich Weissler
ID: 40551342
I assume patches installed 1/8/2015 are obviously not this months patches, but at least last month and possibly older patches. (?)

There was this patch for MS14-066, which impacted SSL, with which a number of folks have reported problems.  I believe this to be the most likely source of your problem... but not with certainty.

And I assume no one has disabled SSL 3.0, per recent mitigation instructions.

Do you have access to the JDBC connection string, to be able to confirm whether it is requesting SSL?
0
 

Author Comment

by:Robert Timmons
ID: 40551394
I am starting to think it is something to do with the java since I can connect using ODBC but will back out that patch first. The connection string is definitely not setup to use encryption.
0
 
LVL 20

Accepted Solution

by:
Marten Rune earned 500 total points
ID: 40551440
Well it's Java alright!

Can you set up a wireshark or MS Netmon to see if it gets out on the network at all.
Have seen "SQL not responding" before when the app doesn't even make a call. It's such a blamegame from the programmers. It should say, timeout due to threshold value reached, and this can be a number of reasons, one is a not responding SQL.
0
 

Author Comment

by:Robert Timmons
ID: 40557053
I've requested that this question be deleted for the following reason:

It is infrastructure related
0
 
LVL 20

Expert Comment

by:Marten Rune
ID: 40557054
My first post states that this is likely OS/infrastructure related, my following posts is how he proves this to fellow colleagues. So that they be forced to fix stuff on their end.
To me, thats a solution. I leave it up the the Moderators review.

Regards Martenrune
0
 

Author Comment

by:Robert Timmons
ID: 40591364
After more research we found the issue had to do with a registry change for SSLv3

https://technet.microsoft.com/en-us/library/security/3009008.aspx

Use the "Disable SSL 3.0 in Windows for Server Software" directions.
0
 
LVL 20

Expert Comment

by:Marten Rune
ID: 40594625
Thanks for sharing. Good for the Community.

Regards Marten
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Worried about if Apple can protect your documents, photos, and everything else that gets stored in iCloud? Read on to find out what Apple really uses to make things secure.
Ransomware is a growing menace to anyone using a computer or mobile device. Here are answers to some common questions about this vicious new form of malware.
Using examples as well as descriptions, and references to Books Online, show the different Recovery Models available in SQL Server and explain, as well as show how full, differential and transaction log backups are performed
Via a live example, show how to extract insert data into a SQL Server database table using the Import/Export option and Bulk Insert.

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question