- Generate the files client.pem, client.cert, and client.key on each client machine using openssl version 1.0.1c:
openssl genrsa 1024 > client.key chmod 400 client.key openssl req -new -x509 -nodes -sha1 -days 365 -key client.key > client.cert openssl x509 -in client.cert -text > client.pem
- Use the following configuration when executing ODBC. For this example, we will assume the client will store the certificate as /home/jbloggs/certs/client.cert and the key as /home/jbloggs/certs/client.key:
EnableSSL=1 SSLEncryptReads=0 SSLAllowSelfSignedPeer=1 SSLFileType=SSL_FILETYPE_PEM SSLCertificatePath=/home/jbloggs/certs/client.cert SSLPrivateKeyPath=/home/jbloggs/certs/client.key