Creating Certification Authority Files

Follow these steps to create the certification authority (CA) files.

Note: If you have previously already created or obtained a certificate, skip steps 2 through 6.

Set the environment by issuing this command from a command window:
```
cd C:\<install_dir>\DC-15_0\DC_SYBASE.bat
```
where install_dir is the directory for your installation. For example:
```
cd C:\sybase\DC-15_0\DC_SYBASE.bat
```
Create the CA.in file. Enter the parameters for the CA certificate that you are going to use with the certreq utility, as shown:
1. Enter the following, on one line:
```
cd C:\<install_dir>\DC-15_0\bin
```
2. Using a text editor such as Notepad, create a file called CA.in and enter:
```
req_certtype=Server
req_keytype=RSA
req_keylength=512
req_country=US
req_state=CO
req_locality=Boulder
req_organization=Sybase
req_orgunit=Security
req_commonname=CA
```
  Save the file.
  Note: For more information about certreq parameters, see the Adaptive Server Utilities Guide.

Create the private key file and a certificate request file for the CA certificate:

C:\<install_dir>\DC-15_0\bin>certreq -F CA.in -R CA_req.txt -K CA_pkey.txt -P mycapassword

You see:

Generating key pair (please wait)...

Create a public key file named trusted.txt by using the CA_req.txt file with the private key file to sign the public key file:
```
>certauth -r -C CA_req.txt -Q CA_req.txt -K CA_pkey.txt -P yourcapassword -T 365 -O trusted.txt
```

Following is an example of the expected output:

-- Sybase Test Certificate Authority Utility -- -- Certificate Validity:
      startDate = Thu Mar 02 09:56:43 2008
      endDate = Fri Mar 20 09:58:10 2009
Setting serial number Ox1w7d236819a91a32
Could not sign certificate using signature type 20, error ‘No error string returned.’ (3000).
Could not sign certificate using signature type 22, error ‘No error string returned.’ (3000) 
CA sign certificate SUCCEED using signature type 2, return ‘SSLNoErr’ (0).