Access Denied Erorr Due to Self-Signed Certificates in Certificate Chain

(Doc ID 2277442.1)

Last updated on JUNE 28, 2017

Applies to:

MySQL Server - Version 5.7 and later
Information in this document applies to any platform.


On : 5.7 version, Privilege System

When attempting to authenticate via PAM plugin, failure results.


Access denied

The issue can be reproduced at will with the following steps:
1. Set up MySQL Server with SSL chain certificates
2. Make one certificate a self-signed
3. Try and authenticate via SSL connection

The issue has the following business impact:
Due to this issue, users cannot authenticate to access MySQL Server.


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms