Sample 2: Setting up the Client and Server for Verifying the Client

Go Up to Sample OTW Configurations

To setup InterBase with client side verification, you must first perform all the steps in Sample 1 for both server and client setup. For this example, we will assume that InterBase is installed in C:\InterBase.

Setting up the server

To set up the sample server:

1. Copy the ibrootcert.pem file to the <install_directory>/secure/server directory. This is the public key certificate used by the server to identify the client.
2. The ibss_config file must be modified to indicate to the server that client verification has been enabled, and that the public key certificate location. This is done by adding the following to the <install_directory>/secure/server/ibss_config file:

   IBSSL_SERVER_VERIFY_CLIENT
   IBSSL_SERVER_CAFILE=c:\InterBase\secure\server\ibrootcert.pem
   

Sample 2: Setting up the client

To set up the sample client:

1. Copy the ibclient.pem file, which is a PEM formatted file that contains the client certificate and private key, to your HOME directory on the client. Assume that your HOME directory is C:\smistry, then the complete path for the file will be c:\smistry\ibclient.pem.
2. Specify the location of your client certificate and private key on the connection URL. For example, if you are connecting to c:/foo.ib using isql, the command would be:

   isql> connect “localhost/3065?ssl=true?clientCertFile=C:\smistry\ibclient.pem??:c:/foo.ib”;
   

Advance To:

• Sample 3: Setting up a JDBC Client and InterBase Server for Verifying the Client