EnterpriseSSL Certificate Installation: Lotus Domino Go 4.6.2.6+

May 25, 2018 in SHA 1

Your certificate will be sent to you by email. The email message includes the web server certificate that you purchased in the body of the email message. Copy the certificate from the body of the email and paste it into a text editor (such as notepad) to create text files. Name this file 'Server.txt'.

Installing the Root and Intermediate Certificates

You will be receiving the following three files from comodo:

Root AddTrustExternalCARoot.crt
Intermediate CA UTNAddTrustServerCA.crt
domain/site certificate yourdomainname.crt

Or you can download root and intermediate CA files from here.
Create 2 text files.
The first file should be the AddTrustExternalCARoot.crt.Name this file 'root.txt'.
The second file should be the UTNAddTrustServerCA.crt Name this file 'UTN.txt'.

Note: Be sure to include the -----BEGIN CERTIFICATE----- line and the ------END CERTIFICATE----- line. < p password. the for prompted be will You keyfile.kyr). (usually file of name Type file. ring key existing an open to O Select mkkf typing by utility MKKF Start>

Note: If you start the 'mkkf' utility from the directory that contains your certificates you will not need to include the path.

Select R to receive a certificate into the Key Ring File
You will be prompted for the file name. Enter root.txt
Enter Root certificate name (the file name supplied on the file) for the label
Press 'Enter' to continue
Select W to work with Keys and Certificates
Select L to List/Select the key to work with
Find the entry you made above (the file name supplied on the file) and select S to select this menu
Select T to mark this as a 'Trusted' root
Select Y - Yes, to confirm this request
Press 'Enter' to return to the pervious menu
Select X to exit the menu

Repeat from 'Select R' using the Comodo Intermediate certificates
Substitute Root certificate name (the file name supplied on the file) with Intermediate CA certificate name (the file name supplied on the file)

Installing your Web Server Certificate

From the main menu of the mkkf utility, select R to Receive a certificate into a Key Ring File
Enter the server certificate file name (eg. 'server.txt')
Select W to Work with keys and certificates
Select L to List/Select the key to work with. Select N until you find the required file
Select S to Select this certificate
Select F to mark this key as the selected default key
Select X to exit this menu
Select C to Create a 'stash file' for the key ring
Note: This is an important step, which is often overlooked
Select X to exit the menu
Select Y - Yes, to save all changes to the key file and confirm the update

Enabling SSL on your Domino Go Web Server

Access the web server via your browser. Select 'Configuration and Administration Forms'
Scroll down to security. Select Security Configuration
Ensure 'Allow SSL connections using port 443' is selected
Ensure that the correct Key Ring file is listed
Apply the changes

You will then need to restart your Web Server