All OpenEdge server and client components that implement secure HTTP (HTTPS) or Transport Layer Security (TLS) connections require access to private keys and digital certificates to negotiate these connections and to enable them to function securely.

For all OpenEdge components, OpenEdge provides utilities that allow you to install and manage keys and digital certificates (in keystores) so that the components can access them. For Open Clients, clients of OpenEdge web services, OpenEdge provides utilities for some clients or it relies on utilities provided by the client platform to manage the required certificate stores.

This content describes how to use the OpenEdge utilities.

A TLS server requires access to a private key and a digital (public-key) certificate to authorize the identity of the server. Clients require access to public-key certificates that allow them to authenticate the servers that they access. Both servers and clients must obtain their keys and certificates from a trusted source, typically a Certificate Authority (CA).

For more information on keys, certificates, and CAs, see Introduction to Security and Auditing in Learn About Security and Auditing.