6.4.5 Command Options for Secure Connections

This section describes options that specify whether to use secure connections and the names of certificate and key files. These options can be given on the command line or in an option file. They are not available unless MySQL has been built with SSL support. See Section 6.4.2, “Building MySQL with Support for Secure Connections”. For examples of suggested use and how to check whether a connection is secure, see Section 6.4.4, “Configuring MySQL to Use Secure Connections”. (There are also --master-ssl* options that can be used for setting up a secure connection from a slave replication server to a master server; see Section 16.1.3, “Replication and Binary Logging Options and Variables”.)

Table 6.8 Secure-Connection Option Summary

--skip-sslDo not use secure connection 
--sslEnable secure connection 
--ssl-caPath of file that contains list of trusted SSL CAs5.1.11
--ssl-capathPath of directory that contains trusted SSL CA certificates in PEM format5.1.11
--ssl-certPath of file that contains X509 certificate in PEM format5.1.11
--ssl-cipherList of permitted ciphers to use for connection encryption5.1.11
--ssl-keyPath of file that contains X509 key in PEM format5.1.11
--ssl-verify-server-certVerify server certificate Common Name value against host name used when connecting to server5.1.11