We're setting everything up for our JSS install (v.9.91) - we have our Jumpstart session scheduled for next week.
I have a question related to the database server that we are intending to have as a separate system that our JSS talks to. (We are using MariaDB 10.0.x.)
Now, we've setup the DB server to be fine talking over TLS, as shown by connecting via the command-line tools:
<JSS server> $ mysql --ssl -u jamfsoftware -p -h <JSS DB server> jamfsoftware
...
> status
...
>> SSL: Cipher in use is DHE-RSA-AES256-GCM-SHA384
Is there an "easy" way - through a configuration mod - to enable JSS to be happy talking to our database over TLS, rather than in plaintext? I don't, at this stage, need to have any more advanced client-cert setups - just a "regular" TLS session against the server-cert to protect the confidentiality of the connection as it travels across our network.
I've tested the setup by changing the GRANT privileges to include "REQUIRE SSL" on the database side and then our JSS service fails to connect to the DB.
Thanks for any help with this,
Steve