Tutorial requirements  Setting up EAServer

Chapter 16: Tutorial: Using SSL

Setting up your browser

In this tutorial, your browser connects to EAServer through a listener that requires client authentication. This requires you to install a personal certificate in the browser that authenticates your identity.

To install a personal certificate in your browser:

  1. Start the server, EAServer Manager, and connect to the Certificates folder.

  2. Export a personal (user) certificate signed by the Jaguar test CA.

  3. Import the user certificate to your browser.


Start the server, EAServer Manager, and connect to the Certificates folder

If the server is not already running, follow the instructions under “Starting the server” in the EAServer System Administration Guide to start the server.

If you are not connected to EAServer Manager, follow the instructions in “Using EAServer Manager” in the EAServer System Administration Guide to connect to EAServer Manager. After connecting, browse to the Certificates folder, double-click on it, then enter your certificate database PIN.


Obtain and install a personal certificate

You need a personal certificate installed in your browser before the sample applets can attach to EAServer listener ports that require client authentication.

There are a variety of ways to get a personal certificate:

StepsExporting the sample user certificate from EAServer

  1. In EAServer Manager | Certificates folder, highlight the User Certificates folder.

  2. Highlight one of the sample certificates.

  3. Select File | Export Certificate.

  4. In the Export Certificate wizard, select the PKCS#12 formatted data option. This option exports the private key and the certificate so that you can import it in to a browser and use it to authenticate yourself. Click Next.

  5. Enter and confirm a password. You need to provide this password when you import the certificate in to a browser. Click Next.

  6. Click the Browse button on the wizard and enter the path and file name of the exported certificate. Do not supply an extension; .p12 extension is automatically appended to the certificate. Click Finish.

    An information box appears confirming that the user certificate has been successfully exported. Click OK.

StepsImporting the sample user certificate in to Netscape

  1. In Netscape, click the security icon.

  2. Highlight “Yours” to view your certificate.

  3. Click the Import a Certificate button.

  4. Locate and highlight the certificate you exported from EAServer Manager | Certificates folder. Click Open.

  5. Enter the password you used when you exported the certificate.

  6. The certificate is imported to Netscape. You can view and verify its validity.

    When your browser connects to EAServer listeners that require client authentication, you can select this certificate when Netscape prompts you for a user certificate.

StepsImporting the sample user certificate in to Internet Explorer

  1. In Internet Explorer, select View | Internet Options (version 4.0) or Tools | Internet Options (version 5.0).

  2. Select the Content tab.

  3. Click the Personal Certificates button (version 4.0) or the Certificates button (version 5.0).

  4. Click the Import button. Enter the complete path and file name and password of the exported certificate (version 4.0) or follow the wizard instructions to locate the certificate and enter the password (version 5.0).

  5. The certificate is imported in to Internet Explorer. You can view and verify its validity.

    When your browser connects to EAServer listeners that require client authentication, you can select this certificate when Internet Explorer prompts you for a user certificate.





Copyright © 2005. Sybase Inc. All rights reserved. Setting up EAServer