Generating Certificates for HTTPS-Enabled Synchronization

Generate public, private, and identity keys by generating a certificate request with the gencert command line utility.

You can only share a certificate when the Afaria server and Unwired Server are installed on the same host—unless you create wildcard certificates (that is, where you specify the DN of the certificate to be *.<domain>). Wildcard certificates may not always be accepted by clients.

  1. At a command prompt, change to:

    <UnwiredPlatform-installDir>\servers\Unwired Server\SQLAnywhere11\win32

  2. Run:

    gencert -x https(port=2440;certificate=filename;certificate_password=pwd)

  3. When prompted, create an RSA certificate with a key length of 1024KB. For all remaining prompts, choose the values as required for your deployment. For example:
    Certificate Generation Tool
Choose encryption type ((R)SA or (E)CC): R
Enter key length (512-2048): 1024
Generating key pair...
Country Code: US
State/Province: NH
Locality: Concord
Organization: Sybase
Organizational Unit: ITS
Common Name: SUP
Serial Number: 1
Certificate valid for how many years: 2
Enter file path of signer's certificate:
Certificate will be a self-signed root
Enter password to protect private key: admin123
Enter file path to save certificate: rsa_public_cert.crt
Enter file path to save private key: rsa_private_cert.crt
Enter file path to save identity: rsa_server_identity.crt
    Note: Remember your private key password and identity key file path. You will need these values the next step.
Parent topic: Encrypting Unwired Server Communication Streams
Next topic: Implementing HTTPS for Unwired Server Synchronization

Created September 17, 2009. Send feedback on this help topic to Sybase Technical Publications: pubs@sybase.com