OpenEdge supports data privacy and client/server authentication over connections between OpenEdge clients, servers, and middleware using the Secure Sockets Layer (SSL). You can use the following connection options to enable encryption for the ODBC driver. For more information on encryption, see OpenEdge Getting Started: Core Business Services - Security and Auditing.
To enable encryption:
1. From the ODBC Progress OpenEdge Wire Protocol Driver Setup window, click Security and the Security tab dialog appears:
2. Specify values for the following:
Encryption Method — This options determines if the driver will encrypt and decrypt data sent to and from the database server. Select either No Encryption or SSL from the drop-down list.
Validate Server Certificate — Select this option to enable the driver to validate the server certificate returned by the database server while establishing the SSL connection. If selected, the certificate returned must be issued by a certificate authority that is included in the trust store. Leaving this option unselected might be useful in test and debug environments because it eliminates the need to specify a trust store on all client machines in the test environment.
Truststore — Certificate authorities trusted by the client reside in an encrypted file called a truststore. Enter the pathname that specifies the truststore file location.
Truststore Password — Enter the trust store password to access the contents of the truststore.
Host Name In Certificate — Ensures the driver is connecting to the requested server. Enter a name which the driver can examine against the value included in the certificate. If the name you enter and the value in the certificate do not match, then the connection fails. This feature is not enabled if Validate Server Certificate is not selected.