The System Administrator installs server certificates and private keys for the Replication Server installation. The System Administrator can get a server certificate using third-party tools provided with an existing public-key infrastructure (PKI) already in use in the customer environment. Each Replication Server acting as a server in an SSL-enabled connection must have a certificate issued by a trusted CA.
Most third-party PKI vendors have utilities to generate certificates and private keys.
If you request a certificate from a third-party vendor, and that certificate is in PKCS#12 format, use the certpk12 utility to convert the certificate into a format understood by Replication Server.
Adaptive Server Enterprise provides the certreq and certauth utilities to test the certificate request tool and to verify that the authentication methods are working on your server. See Chapter 9, “Security Administration” in Adaptive Server Enterprise System Administration Guide for more information.