Skip to content

Database Configuration

The database is not included in the Mideye Server installation package and needs to be created before proceeding with the installation.

The database can either be installed locally on the same operating system or remotley on another server or in a cluster.

In this document there are a few important things to understand regarding database encryption and database clusters, read them through carefully.

Supported Databases

  • Microsoft SQL Server 2012*
  • Microsoft SQL Server 2014*
  • Microsoft SQL Server 2016*
  • Microsoft SQL Server 2017*
  • Microsoft SQL Server 2019*
  • Mariadb 5.5.63+ or 10.0+
  • MySQL 5.5.3 or greater

* The express version is also supported.

Database Encryption

Since Mideye Server 6 the Mideye Server encrypts the RADIUS Shared Secrets stored in the database. The encryption occurs in one of two situations:

  • When an administrator is saving a new RADIUS Shared Secret via the Webadmin GUI.
  • When connecting a Mideye Server 6 to an old Mideye Server 5 database.

When connecting a Mideye Server 6 to an old Mideye Server 5 database all the RADIUS Shared Secrets that are stored there are encrypted and the Mideye Server 5 server is no longer able to authenticate users because of this.

Information to backup

There are two important components that are used for the encryption, the keystore and the key store password. It is recommended to keep a backup of the the keystore and the key store password in case they need to be retrieved at some point..

The default path to the keystore.pfx file is:

  • Linux: /opt/mideyeserver6/config/keystore.pfx
  • Windows: C:\Program Files (x86)\Mideye Server 6\config\keystore.pfx

The default path to the application-prod.yml file that includes the Keystore Password:

  • Linux: /opt/mideyeserver6/config/application-prod.yml
  • Windows: C:\Program Files (x86)\Mideye Server 6\config\application-prod.yml
server:
    port: 443
    ssl:
        key-store: C:\Program Files (x86)\Mideye Server 6\config\keystore.pfx
        key-store-password: "EXamplePASSword"
        enabled: true

Shared Database

Several Mideye Servers can be connected to a database cluster or share a database. This brings up two concerns:

  • One of the servers must be made Cluster Leader.
  • Since the RADIUS Shared Secrets stored in the database are encrypted the keystore and the keystore key needs to be replicated to all Mideye Servers.

Read more about this in the Shared Database section.

Change database

In some cases the databases must be changed. Follow the instructions below:

Open application-prod.yml as an administrator:

  • Linux: opt/mideyeserver6/config/application-prod.yml
  • Windows: C:\Program Files (x86)\Mideye Server 6\config\application-prod.yml

Navigate to database section (example below) and change the output to fit the new database. 

driver: net.sourceforge.jtds.jdbc.Driver
url: jdbc:jtds:sqlserver://localhost:1433/mideye;domain=mideye.com;prepareSQL=2;useNTLMv2=true

    username: "username"
    password: "password"

Save the file and restart the Mideye Service.