Authentication Using Server Certificates for ODBC

ODBC uses TLS-secured connections. Currently, only TLS 1.2 is supported. Further, we actively look for new vulnerabilities and respond as needed to new threats.

You should use authentication using server certificates. To ensure that the authentication with server certificates is enabled, check the following topics:

• Determining the Required Actions for your Driver and Operating System

• Adding the Required Security Certificates to the Certificates Store

Determining the Required Actions for your Driver and Operating System

The following tables outlines the actions required depending on your operating system and the version of the driver you install:

Driver	Action Required
Windows ODBC 8.10.143.0	No update required. The installer automatically updates your data sources to use the generic system trust store and account-specific domains. For more information about the installation, see Downloading and Installing the ODBC Driver for Windows.
Windows ODBC 8.10.143.0 (DSN-less connections)	Ensure that the connection attribute TrustStore=system is included in your connection string. See Connecting Using a Connection String.
Linux ODBC 8.10.143.0	Ensure that the TrustStore parameter in your connection string includes a path to the ca3.cer certificate. For more information, see Configuring the ODBC Data Source on Linux and Connecting Using a Connection String.

Adding the Required Security Certificates to the Certificates Store

To access the Connect Service, the required server certificates must be included in your Windows Trusted Root Certification Authorities store. The server certificates are usually already included. In case they are not and you are unable to connect, you can download the security certificates from the SuiteAnalytics Connect driver download page and add them manually.

To add the required security certificates to the certificates store:

1. In the Settings portlet on your NetSuite home page, click Set Up SuiteAnalytics Connect. If the download link is not displayed, you need to enable the Connect Service. For more information, see Enabling the Connect Service Feature.

2. Click the Download button next to CA CERTIFICATES.

3. When the certificates .zip file is downloaded, extract it to any location on your computer.

4. Next, go to your Windows Start menu, type mmc in the search field and press Enter. This opens the Microsoft Management Console.

5. On the File menu, select Add/Remove Snap-in.

6. Select the Certificates snap-in and click Add.

   You can set the snap-in to manage security certificates for your user account, service account, or computer account.

7. When you have finished setting up the snap-in, click OK.

8. In the console tree, double-click Certificates.

9. Right-click the Trusted Root Certification Authorities store and select All Tasks > Import.

10. Follow the wizard’s instructions to specify the downloaded security certificate files and import them to your Trusted Root Certification Authorities store.

When the security certificates are imported, the SuiteAnalytics Connect ODBC integrations will automatically start using them when connecting to NetSuite.

Related Topics

• Accessing the Connect Service Using an ODBC Driver
• Prerequisites
• Downloading and Installing the ODBC Driver for Windows
• Downloading and Installing the ODBC Driver for Linux
• Configuring the ODBC Driver
• Connecting Using a Connection String
• Connection Attributes
• Upgrading an ODBC Driver
• Accessing the Connect Service Using Microsoft Excel

General Notices