This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Update: the problem and solution (workaround) is described here and is caused by homebrew: https://github.com/microsoft/homebrew-mssql-release/issues/59
---
After upgrading to Python3.10 with homebrew, my OpenSSL was upgraded to version 3 as well.
Now I can't connect to my SQL Server anymore, since ODBC requires OpenSSL 1.1 or 1.0. So when I run:
isql -v -k "<connection string"
I get the following error
[08001][Microsoft][ODBC Driver 17 for SQL Server]SSL Provider: [OpenSSL library could not be loaded, make sure OpenSSL 1.0 or 1.1 is installed]
[08001][Microsoft][ODBC Driver 17 for SQL Server]Client unable to establish connection
But when I look in /usr/local/etc/ I see that openssl@1.1 is installed:
How can I solve this problem?
I am on a mac, version 11.5.2
Other useful output:
➜ ~ brew list openssl@1.1
/usr/local/Cellar/openssl@1.1/1.1.1l_1/.bottle/etc/ (7 files)
/usr/local/Cellar/openssl@1.1/1.1.1l_1/bin/c_rehash
/usr/local/Cellar/openssl@1.1/1.1.1l_1/bin/openssl
/usr/local/Cellar/openssl@1.1/1.1.1l_1/include/openssl/ (104 files)
/usr/local/Cellar/openssl@1.1/1.1.1l_1/lib/libcrypto.1.1.dylib
/usr/local/Cellar/openssl@1.1/1.1.1l_1/lib/libssl.1.1.dylib
/usr/local/Cellar/openssl@1.1/1.1.1l_1/lib/engines-1.1/ (2 files)
/usr/local/Cellar/openssl@1.1/1.1.1l_1/lib/pkgconfig/ (3 files)
/usr/local/Cellar/openssl@1.1/1.1.1l_1/lib/ (4 other files)
/usr/local/Cellar/openssl@1.1/1.1.1l_1/share/doc/ (3971 files)
/usr/local/Cellar/openssl@1.1/1.1.1l_1/share/man/ (3971 files)
➜ ~ ls -l /usr/local/opt/openssl/lib/libssl.dylib
lrwxr-xr-x 1 erfannariman admin 14 Sep 7 13:46 /usr/local/opt/openssl/lib/libssl.dylib -> libssl.3.dylib
Also, weird thing is, when I run openssl command, it finds the correct version:
➜ ~ openssl
OpenSSL> version
OpenSSL 1.1.1l 24 Aug 2021
OpenSSL>
Seems like ODBC can't find the correct openssl version, when I run:
DYLD_PRINT_LIBRARIES=1 isql -v -k "<connection string"
I get:
dyld: loaded: /usr/local/opt/openssl/lib/libssl.dylib
dyld: loaded: /usr/local/Cellar/openssl@3/3.0.0/lib/libcrypto.3.dylib
[08001][Microsoft][ODBC Driver 17 for SQL Server]SSL Provider: [OpenSSL library could not be loaded, make sure OpenSSL 1.0 or 1.1 is installed]
[08001][Microsoft][ODBC Driver 17 for SQL Server]Client unable to establish connection
[ISQL]ERROR: Could not SQLDriverConnect
So it is still pointing to openssl@3 which is the wrong version for ODBC.
After trying many things, I found a (hacky) solution:
I removed the link in /usr/local/opt/:
rm openssl
Created a new link to openssl@1.1
ln -s /usr/local/Cellar/openssl@1.1/1.1.1l_1 /usr/local/opt/openssl
Can we leave this issue "open" for now, hopefully someone will come with a better more stable solution.
Thanks for sharing one solution for this issue. It will benefit all community members who are having this similar issue. Your contribution is highly appreciated.
Hi @Erfan Nariman ,
From the screenshot that you offered, the version of odbcini.default openssl is 3. Did you try to change it to openssl 1.1.
Quote from a similar thread.
>Modify /etc/ssl/openssl.cnf config file as follows;
>Change the last line from CipherString = DEFAULT@SECLEVEL=3 to CipherString = DEFAULT@SECLEVEL=1.1
I tried this, did not work unfortunately. I added some more information in my edit, could you please check that? Maybe it brings up ideas how I can solve that. Thanks
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(70.4, 51%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDK%3C/text%3E%3C/svg%3E)
I haven't tried this, because my openssl.cnf file doesn't have CipherString in it, but I've tried pretty much everything else suggested in here and still have the same problem.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 79%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPR%3C/text%3E%3C/svg%3E)
Worked for us, thank you!!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 45%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
Make sure both /usr/local/Cellar/openssl@1.1/1.1.1l_1/bin and /usr/local/Cellar/openssl@1.1/1.1.1l_1/lib are in your "path" environment variable.
Added both to PATH, still same error:
➜ ~ echo $PATH
/Users/erfannariman/bin:/usr/local/bin:/Users/erfannariman/bin:/usr/local/bin:/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin:/usr/local/go/bin:/usr/local/Cellar/openssl@1.1/1.1.1l_1/bin:/usr/local/Cellar/openssl@1.1/1.1.1l_1/lib