Table of Contents

Search

  1. Preface
  2. Introduction to PowerExchange
  3. DBMOVER Configuration File
  4. Netport Jobs
  5. PowerExchange Message Logs and Destination Overrides
  6. SMF Statistics Logging and Reporting
  7. PowerExchange Security
  8. Secure Sockets Layer Support
  9. PowerExchange Alternative Network Security
  10. PowerExchange Nonrelational SQL
  11. PowerExchange Globalization
  12. Using the PowerExchange ODBC Drivers
  13. PowerExchange Datatypes and Conversion Matrix
  14. Appendix A: DTL__CAPXTIMESTAMP Time Stamps
  15. Appendix B: PowerExchange Glossary

OpenSSL in a PowerExchange SSL Environment

OpenSSL in a PowerExchange SSL Environment

OpenSSL is an open-source implementation of the SSL and TLS protocols. PowerExchange uses the OpenSSL run-time engine on Linux, UNIX, and Windows. You can also use the openssl program, which is part of the OpenSSL system, to create CA certificates and personal certificates.
On 32-bit Windows, PowerExchange includes all the components required to generate certificates: openssl.exe, ssleay32.dll, and pmlibeay32.dll.
On Linux, UNIX, and 64-bit Windows, PowerExchange does not include the openssl program. However, OpenSSL is pre-installed on Linux and UNIX. To install OpenSSL on 64-bit Windows, download it from the Web site http://www.openssl.org
To verify that the openssl program is installed and can be used to create certificates, launch OpenSSL and issue the following command:
OpenSSL> version
OpenSSL displays the version number.
To maximize security, Informatica periodically refreshes OpenSSL to the latest version and eliminates support for weak protocols. An OpenSSL refresh might be included in a full PowerExchange release or in a hotfix.
When you create certificates using the openssl program on Linux, Unix and 64 bit Windows, the libraries used are different from the ones that PowerExchange uses to process secure connections. However, the certificates are compatible.