The SSL_ALLOW_SELFSIGNED statement specifies the type of certificate to use for SSL security.
You can use either self-signed certificates or certificates from a commercial certificate authority that the system trusts. Any certificate, whether it is self-signed or signed by a trusted CA, must be available in the CALIST file or CAPATH location.
Linux, UNIX, and Windows
SSL, SSL_REQ_CLNT_CERT, and SSL_REQ_SRVR_CERT
No
SSL_ALLOW_SELFSIGNED={
N
|Y}
N
.
Uses certificates from a commercial certificate authority (CA) that the system trusts.
Y.
Uses self-signed certificates. Self-signed certificates are not verifiable by following the chain to a trusted certificate authority. Self-signed certificates are for internal use only, such as connections within your organization's network or internal testing.