Java DB

Apache Derby

Derby Server and Administration Guide

Derby Getting Started
Derby Reference Manual
Derby Developer's Guide
Derby Performance Tuning
Derby Server and Admin Guide
Derby Tools and Utilities
Derby Server and Admin Guide

-Purpose of this guide

-Part one: Derby Server Guide

-Derby in a multi-user environment

-Derby in a server framework

-Connectivity configurations
-Multiple-client features available in Derby

-The Derby Network Server
-Embedded servers
-How to start an embedded server from an application
-Embedded server example

-About this guide and the Network Server documentation

-Using the Network Server with preexisting Derby applications

-The Network Server and JVMs
-Installing required jar files and adding them to the classpath
-Starting the Network Server

-Starting the Network Server from a Java application
-Starting the Network Server on IPv6/Ipv4 dual stack Windows machines

-Shutting down the Network Server

-Shutting down by using the command line
-Shutting down by using the API

-Obtaining system information

-Obtaining system information by using the command line
-Obtaining system information by using the API

-Accessing the Network Server by using the network client driver

-Network client security
-Network client tracing
-Network client driver examples

-Accessing the Network Server by using a DataSource object

-DataSource access examples

-XA and the Network Server

-Using XA with the network client driver

-Using the Derby tools with the Network Server

-Using the Derby ij tool with the Network Server
-Using the Derby dblook tool with the Network Server

-Differences between running Derby in embedded mode and using the Network Server

-Differences between the embedded client and the network client driver
-Updatable Result Sets
-Error message differences
-User authentication differences

-Differences in JDBC 3. 0 methods
-Differences using the Connection. setReadOnly method

-Setting port numbers

-Managing the Derby Network Server

-Using the NetworkServerControl API

-Setting Network Server properties

-derby.drda.host property
-derby.drda.keepAlive property
-derby. drda. logConnections property
-derby.drda.maxThreads property
-derby.drda.minThreads property
-derby.drda.portNumber property
-derby. drda. securityMechanism property
-derby.drda.sslMode property
-derby. drda. startNetworkServer property
-derby. drda. streamOutBufferSize property
-derby.drda.timeSlice property
-derby.drda.traceAll property
-derby. drda. traceDirectory property

-Verifying Startup

-Managing the Derby Network Server remotely by using the servlet interface

-Start-up page
-Running page
-Trace session page
-Trace directory page
-Set Network Server parameters

-Derby Network Server advanced topics

-Network Server security
-Running the Network Server under the security manager

-Basic Network Server security policy
-Customizing the Network Server's security policy
-Running the Network Server without a security policy

-Running the Network Server with User Authentication
-Network encryption and authentication with SSL/TLS

-Key and certificate handling
-Starting the server with SSL/TLS
-Running the client with SSL/TLS
-Other server commands

-Configuring the Network Server to handle connections
-Controlling logging by using the log file
-Controlling tracing by using the trace facility

-Turning on the trace facility
-Turning off the trace facility

-Derby Network Server sample programs

-The NsSample sample program

-Running the NsSample sample program

-Network Server sample programs for embedded and client connections

-Overview of the SimpleNetworkServerSample program
-Running the SimpleNetworkServerSample program
-Connecting a client to the Network Server with the SimpleNetworkClientSample program
-Running the SimpleNetworkClientSample program

-Part two: Derby Administration Guide

-Checking database consistency

-The SYSCS_CHECK_TABLE function
-Sample SYSCS_CHECK_TABLE error messages
-Sample SYSCS_CHECK_TABLE queries

-Backing up and restoring databases

-Backing up a database

-Offline backups
-Online backups

-When the log is in a non-default location
-Backing up encrypted databases

-Restoring a database from a backup copy
-Creating a database from a backup copy
-Roll-forward recovery

-Replicating databases

-Starting and running replication
-Stopping replication
-Forcing a failover
-Replication and security
-Replication failure handling

-Logging on a separate device

-Using the logDevice= logDirectoryPath attribute
-Example of creating a log in a non-default location
-Example of moving a log manually
-Issues for logging in a non-default location

-Obtaining locking information

-Monitoring deadlocks

-Reclaiming unused space

		Search documentation:

Starting the server with SSL/TLS For server SSL/TLS, a server key pair needs to be generated. If the server is going to do client authentication, the client sertificates need to be installed in the trust store. These operations are described in Key and certificate handling. SSL at the server side is activated with the property `derby.drda.sslMode` (default off) or the `-ssl` option for the server start command. Starting the server with basic SSL encryption When the SSL mode is set to `basic`, the server will only accept SSL encrypted connections. The properties `javax.net.ssl.keyStore` and `javax.net.ssl.keyStorePassword` need to be set with the proper values. Example: java -Djavax.net.ssl.keyStore=serverKeyStore.key \ -Djavax.net.ssl.keyStorePassword=qwerty \ -jar derbyrun.jar server start -ssl basic Starting a server which authenticates clients When the server's SSL mode is set to `peerAuthentication`, then the server authenticates its clients' identity in addition to encrypting network traffic. In this situation, the server's trust store must contain a certificate for each client which will connect. The `javax.net.ssl.trustStore` and `javax.net.ssl.trustStorePassword` need to be set in addition to the properties above. See Running the client with SSL/TLS for client settings when the server does client authentication Example: java -Djavax.net.ssl.keyStore=serverKeyStore.key \ -Djavax.net.ssl.keyStorePassword=qwerty \ -Djavax.net.ssl.trustStore=serverTrustStore.key \ -Djavax.net.ssl.trustStorePassword=qwerty \ -jar derbyrun.jar server start -ssl peerAuthentication Parent topic: Network encryption and authentication with SSL/TLS Related concepts Key and certificate handling Running the client with SSL/TLS Other server commands

	javadb@jdbcurl.com