Lotus Domino Administrator 8.5 Help - Using a Domino 5 certificate authority

SECURITY

Using a Domino 5 certificate authority
You can issue server and client certificates using CA key ring file. Alternatively, use the CA process to manage and process certificate requests. The CA process provides advantages; for example, it does not require access to the certifier ID and password.

Setting up a Domino 5 certificate authority (CA) to issue server and client certificates using a CA key ring file requires that you:

Have access to the CA key ring and password in order to administer the certifier and issue certificates.
As an administrator, must administer and safeguard the certifier ID.
Issue Notes and Internet certificates separately.

A CA key ring file is a binary file that is password-protected and is used to store the CA certificate. This certificate is then used to sign server and client Internet certificates.

Once you have created a certifier on a Domino server, you can then enable SSL on that server to provide secure communications for certificate requests and pickups. You do this by creating a server key ring file and merging the CA certificate into it as a trusted root certificate.

For more information, see the Techdoc "Setting up a Domino 5 certificate authority" on the Lotus Support site.

Domino server-based certification authority

Glossary

Feedback on Help or Product Usability?

Help on Help

All Help Contents

Glossary