After upgrading to Appian 24.1, users are unable to connect to the SQL Server data source in the Admin Console. The following error will be seen in the tomcat-stdOut.log:
ERROR com.appiancorp.process.runtime.activities.QueryRdbmsActivity - java.sql.SQLException: Cannot create PoolableConnectionFactory ("encrypt" property is set to "false" and "trustServerCertificate" property is set to "false" but the driver could not establish a secure connection to SQL Server by using Secure Sockets Layer (SSL) encryption: Error: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target. ClientConnectionId:<id>)
In Appian 24.1, the SQL Server JDBC driver was updated to version 12. This included a change from Microsoft in how SQL Server handles certificate validation. Certificate validation now validates when encryption is negotiated from either the client or the server side, not just the client side.
Add trustServerCertificate=true to the database connection string in the Admin Console.
trustServerCertificate=true
This article applies to Appian 24.1 and later.
Last Reviewed: May 2024