Using the Demonstration Certificate Authority

Restriction: This topic applies only when the Enterprise Server feature is enabled.

The Demonstration Certificate Authority, or Demo CA, is an optional component included with Visual COBOL, Enterprise Developer, and Enterprise Server. It can be used to generate private keys and test certificates for development and testing purposes. Demo CA is not intended or supported for production use.

You can use Demo CA to generate certificates and their corresponding private keys to test your secure communications configurations, and for developer and test systems. For production systems, use certificates issued by a public CA or a CA controlled by your organization, and protect private keys carefully.

Demo CA is a set of scripts which use the OpenSSL utility program. Running the CreateDemoCA script will create the CA itself and test certificates for a server, a client machine, and a client user. The Demo CA component scripts are included in the product's installation bin directory; unlike in older product releases, there is no longer a Demo CA installer. When you run the scripts to create a Demo CA instance, you specify the destination directory for it.

Demo CA was rewritten for the 9.0 product release to improve usability, add features, and respect current standards and best practices. Users upgrading from earlier product versions should consult the Demo CA documentation to familiarize themselves with the differences.