To use a stand-alone SQL client or to integrate your application with SingleStore Managed Service, download the TLS/SSL public certificate via the link provided in SingleStore Managed Service. This CA certificate can be used to both verify the identity of each cluster host and establish an encrypted connection. Install the certificate via the instructions provided at How Do I Install a Certificate?.
Then, access SingleStore Managed Service at the available endpoints:
-
Use the Admin endpoint to connect to the cluster’s Master Aggregator and run Data Definition Language (DDL)-related operations to work with database schemas, such as
ALTER
,CREATE
,DROP
,COMMENT
, andSHOW
. -
Use the Client endpoint to connect to the cluster’s Child Aggregator to run Data Manipulation Language (DML)-related operations to work with database data, such as
INSERT
,SELECT
,UPDATE
,DELETE
, andMERGE
.
For example, using the MySQL command line (CLI) client, you can connect to these two SingleStore Managed Service endpoints using the singlestore_bundle.pem
certificate file.
Admin Endpoint
Note: Include the --ssl-mode=VERIFY_CA
option to verify the certificate. Include the --ssl-mode=REQUIRED
option to establish a secure connection in older versions of the MySQL client, even when the --ssl-ca
option is specified.
mysql -u admin -p -h <admin-endpoint-host> -P 3306 \
--default-auth=mysql_native_password \
--ssl-ca=./singlestore_bundle.pem \
--ssl-mode=VERIFY_CA
****
Enter password:
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 3040
Server version: 5.5.58 MemSQL source distribution (compatible; MySQL Enterprise & MySQL Commercial)
Copyright (c) 2000, 2019, Oracle and/or its affiliates. All rights reserved.
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
mysql>
Client Endpoint
Note: Include the --ssl-mode=VERIFY_CA
option to verify the certificate. Include the --ssl-mode=REQUIRED
option to establish a secure connection in older versions of the MySQL client, even when the --ssl-ca
option is specified.
mysql -u admin -p -h <client-endpoint-host> -P 3306 \
--default-auth=mysql_native_password \
--ssl-ca=./singlestore_bundle.pem \
--ssl-mode=VERIFY_CA
****
Enter password:
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 3040
Server version: 5.5.58 MemSQL source distribution (compatible; MySQL Enterprise & MySQL Commercial)
Copyright (c) 2000, 2019, Oracle and/or its affiliates. All rights reserved.
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
mysql>