To use a stand-alone SQL client or to integrate your application with MemSQL Helios, download the TLS/SSL public certificate via the link provided in MemSQL Helios. This CA certificate can be used to both verify the identity of each cluster host and establish an encrypted connection. Install the certificate via the instructions provided at How Do I Install a Certificate?.
Then, access MemSQL Helios at the available endpoints:
-
Use the Admin endpoint to connect to the MemSQL cluster’s Master Aggregator and run Data Definition Language (DDL)-related operations to work with database schemas, such as
ALTER,CREATE,DROP,COMMENT, andSHOW. -
Use the Client endpoint to connect to the MemSQL cluster’s Child Aggregator to run Data Manipulation Language (DML)-related operations to work with database data, such as
INSERT,SELECT,UPDATE,DELETE, andMERGE.
For example, using the MySQL command line (CLI) client, you can connect to these two MemSQL Helios endpoints using the singlestore_bundle.pem certificate file.
Admin Endpoint
Note: Include the --ssl-mode=VERIFY_CA option to verify the certificate. Include the --ssl-mode=REQUIRED option to establish a secure connection in older versions of the MySQL client, even when the --ssl-ca option is specified.
mysql -u admin -p -h <admin-endpoint-host> -P 3306 \
--default-auth=mysql_native_password \
--ssl-ca=./singlestore_bundle.pem \
--ssl-mode=VERIFY_CA
****
Enter password:
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 3040
Server version: 5.5.58 MemSQL source distribution (compatible; MySQL Enterprise & MySQL Commercial)
Copyright (c) 2000, 2019, Oracle and/or its affiliates. All rights reserved.
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
mysql>
Client Endpoint
Note: Include the --ssl-mode=VERIFY_CA option to verify the certificate. Include the --ssl-mode=REQUIRED option to establish a secure connection in older versions of the MySQL client, even when the --ssl-ca option is specified.
mysql -u admin -p -h <client-endpoint-host> -P 3306 \
--default-auth=mysql_native_password \
--ssl-ca=./singlestore_bundle.pem \
--ssl-mode=VERIFY_CA
****
Enter password:
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 3040
Server version: 5.5.58 MemSQL source distribution (compatible; MySQL Enterprise & MySQL Commercial)
Copyright (c) 2000, 2019, Oracle and/or its affiliates. All rights reserved.
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
mysql>
