Tech Tip: Using 2048 Bit SSL Keys

PRODUCT: 4D | VERSION: 11.5 | PLATFORM: Mac & Win

Published On: January 8, 2010

Currently there is a limitation with the GENERATE ENCRYPTION KEYPAIR command that prevents 4D from generating a key whose length is greater than 1024. However, this does not prevent 4D v11 SQL from using a 2048 bit SSL key.

You can try this workaround if your SSL provider requires a 2048 bit key.

Generate an ssl key whose length is 2048 and a certificate request.
You can use a site like: https://www.mobilefish.com/services/ssl_certificates/ssl_certificates.php

Go to your favorite certificate authority, such as www.qualityssl.com or www.verisign.com, and use the certificate request to get a test certificate.

Now you can use both the key whose length is 2048 and the certificate to run an SSL configuration with the Web Server of 4D v11.5 SQL.

This solution has been tested using Windows Vista SP2 and MacOS X 10.6.2.

Commented by Larry White, P.Eng. on February 11, 2011 at 12:33 PM

It would be very useful when writing tech notes to include all the *relevant* information required.

DO NOT select a passphrase. If you do 4D will crash on launch with the cert and key you generated. I hope this saves someone an hour or so I just spent...