DB2 LUW Extension throwing error: Security mechanism not supported

sruthisattiraju · ‎15 Jun 2023

Hello Team,

We are trying to monitor DB2 database using an DB2 LUW extension but its throwing below error:

Exception occured: [jcc][t4][201][11237][4.31.10] Connection authorization failure occurred. Reason: Security mechanism not supported. ERRORCODE=-4214, SQLSTATE=28000.

According to Dynatrace Support team Security Mechanism (set at DB end is 13) is not supported.

Did anyone tried with SecurityMechanism as 13 using a DB2 extension? Is there a way to change default SecurityMechanism at extension level? Any suggestions please.

Thanks

JamesKitson · ‎15 Jun 2023

This will be the same information that was provided by support but I would like to note it here for if others come across it. The DB2 data source (which is what this extension is based on) does not supportin connections using the DATA_ENCRYPT option. The data source is responsible for the actual connection and so there is no way to support this in the extension while the data source does not support it.

IBM themselves recommend switching to SSL/TLS for encryption as it is considered deprecated: https://www.ibm.com/docs/en/db2/11.5?topic=sequences-data-encrypt

SSL support is added for DB2 extensions starting with ActiveGate 1.269.