Creating Self-Signed Certification

The example uses self-signed certificates. You may also use commercial certificates and/or use own certification authority to create chain of trust.

To generate self-signed certificates, use OpenSSL utility as displayed in the screenshot below. This example is running OpenSSL from bash for Windows. To install OpenSSL, use command sudo apt-get install openssl.)

Now, the requirement is to generate private key and public certificate for CS , master, and replica. To generated, run command thrice changing names of output files.

Generating CS key / certificate pair:

Generating Master key / certificate pair:

Generating Replica key / certificate pair:

Three pairs of private keys and public certificates are generated.

The last step involves testing the SSL connectivity among rules.