Enabling SSL

Enable SSL by generating certificate and trusted roots files for the server. The DirectConnect server determines which security service it uses based on the interface file on UNIX and sql.ini file on Windows.

  1. Specify the certificate file. From a command prompt, enter:
    exec sp_configure <servername>, "certificate_file", <certificate file spec>
  2. Specify the trusted roots file, unless you are using the default location:
    exec sp_configure <servername>, "trusted_roots_file", <trusted roots file spec>
  3. Specify the certificate password file. From the command prompt, enter:
    exec sp_configure <servername>,”certificate password”, <certificate password file spec>
  4. Add the SSL filter to the interfaces file.
  5. Shut down and restart the server.
Note: Once the \<install_dir>\DCO-15_0\install\<server_name>.cfg file is modified to include ssl file location and password information, modify the permission of this file so that it is only viewable and writable by the user account that starts the server. To do this:
  • On UNIX – change the file permission to 600
  • On Windows – modify the file's properties accordingly
Consult your IT security officer for further steps.
For more information on SSL, see the Adaptive Server Enterprise System Administration Guide.
Parent topic: Secure Sockets Layer