Why does connection to my MySQL server in Azure fail if my app does not have SSL enabled?

By default, Azure Database for MySQL enforces SSL connections between your server and your client applications to protect against MITM (man in the middle) attacks. This is done to make the connection to your server as secure as possible.

Although not recommended, you have the option to disable requiring SSL for connecting to your server if your client application does not support SSL connectivity. Please check How to Configure SSL Connectivity for your MySQL server in Azure for more details. You can disable requiring SSL connections from either the portal or using CLI. Note that Azure does not recommend disabling requiring SSL connections when connecting to your server.

Option 1 In Azure portal under"Azure Database for MySQL servers" 1) Choose the MySql server 2) Go to Pricing tier -> Enforce SSL connection and select DISABLED option -> save

Option 2 1) Download the certifccate from https://www.digicert.com/CACerts/BaltimoreCyberTrustRoot.crt.pem 2) Connect to MySql server with these certificate

mysql -h mydemoserver.mysql.database.azure.com -u Username@mydemoserver -p --ssl-ca=/opt/ssl/BaltimoreCyberTrustRoot.crt.pem