For an TLS client, you must have installed a public key certificate that allows the client to authenticate and encrypt communications with a specific TLS server that it connects to. You can obtain the required public key certificate for a given TLS server from the CA that issued the server's private key. Once you have the public key certificate, you can install it on your client system using the certutil command-line tool provided by OpenEdge. At this point your ABL socket client is ready to make an TLS connection to an TLS server.

For more information on OpenEdge TLS support, public key certificates, and using certutil, see Introduction to Security and Auditing.