Modifying CM Server database configuration file

The scm_prepare_database.sh script checks the connection between the Cloudera Manager server and the database, and upon successful connection, it generates the /etc/cloudera-scm-server/db.properties file. This file includes the required configurations for the database connection.

You must follow the steps in this documenet to modify the db.properties file to add additional configuration for enabling TLS 1.2

SSH into the CM Server host.
Backup the db.properties file.
Edit the /etc/cloudera-scm-server/db.properties file and add the following properties:
```
com.cloudera.cmf.orm.hibernate.connection.url=jdbc:mysql://localhost:3306/mysql?useSSL=true&sslMode=VERIFY_CA &trustCertificateKeyStoreUrl=file:///etc/cdep-ssl-conf/CA_STANDARD/truststore.jks&trustCertificateKeyStoreType=jks&trustCertificateKeyStorePassword=cloudera&enabledTLSProtocols=TLSv1.2
```
important

The format of the com.cloudera.cmf.orm.hibernate.connection.url property in the /etc/cloudera-scm-server/db.properties file can vary depending on the database type. For information about the specific JDBC URL format for each database type, see JDBC URL format.
Restart CM Server.
```
sudo systemctl restart cloudera-scm-server
```
note
If you have configured Cloudera Manager for high availability with active and passive instances of the Cloudera Manager server, repeat the above steps for the other Cloudera Manager server instance.