Published on Digi-Sign, The Certificate Corporation (https://www.digi-sign.com)

Home > Lotus Domino Server versions 4.6x and 5.0x

By Digi-Sign
Created Feb 18 2008 - 14:53

Lotus Domino Server versions 4.6x and 5.0x

Important Note:

Effective 1 January 2011, we will no longer support any Certificate Signing Request [CSR] generated with a 1024 bit key. This is because NIST, PKIX, WebTrust and other respective security standards no longer consider the 1024 bit key size as secure. Read more > [1]

Instructions

For version 4.6x:

  • From the administration panel, click System Databases and choose Open Domino Server Certificate Administration (CERTSRV.NSF) on the local machine. Click Create Key Ring.
  • Enter a name for the key ring file in the "Key Ring File Name" field.
  • Enter a password for the server key ring file in the "Key Ring Password" field.
      NOTE: The password is case sensitive.
  • Select a key size. This is the size Domino uses when creating the public and private key pairs.
      NOTE: If you are using the international version of Domino, only the 512 bit key size will work for you unless you have Release R5.04.
  • Specify the components of your server's distinguished name.
  • Click Create Key Ring. Click OK.
  • Click Create Certificate Request.

NOTE: You must select all the text in the second dialog box, including Begin Certificate and End Certificate when the CSR is requested.


For R5.0x:

  • Launch the Domino Administration client.
  • Select File-Open Server and select the Domino server you wish to administer, Click the file tab, double click on Server Certificate Administration database (certsrv.nsf)
  • From the administration panel, click System Databases and choose Open Domino Server Certificate Administration (CERTSRV.NSF) on the local machine.
  • Click Create Key Ring.
  • Enter a name for the key ring file in the "Key Ring File Name" field.
  • Enter a password for the server key ring file in the "Key Ring Password" field.
      NOTE: The password is case sensitive. If you are using the international version of Domino, only the 512 bit key size will work for you unless you have Release R5.04.
  • Specify the components of your server's distinguished name.
  • Click Create Key Ring. Click OK.
  • Click Create Certificate Request.



NOTE: You must select all the text in the second dialog box, including Begin Certificate and End Certificate when the CSR is requested.

Source URL: https://www.digi-sign.com/support/digi-ssl/domino%20server

Links:
[1] https://www.digi-sign.com/about/announcements/2048