SECURITY


Using a Domino 5 certificate authority
You can issue server and client certificates using CA key ring file. Alternatively, use the CA process to manage and process certificate requests. The CA process provides advantages; for example, it does not require access to the certifier ID and password.

Setting up a Domino 5 certificate authority (CA) to issue server and client certificates using a CA key ring file requires that you:


A CA key ring file is a binary file that is password-protected and is used to store the CA certificate. This certificate is then used to sign server and client Internet certificates.

Once you have created a certifier on a Domino server, you can then enable SSL on that server to provide secure communications for certificate requests and pickups. You do this by creating a server key ring file and merging the CA certificate into it as a trusted root certificate.

For more information, see the Techdoc "Setting up a Domino 5 certificate authority" on the Lotus Support site.

Related topics