EssentialSSL Certificate Installation: Lotus Domino Go

May 25, 2018 in SMTP and SHA 1

Installing your Web Server Certificate

  • Your certificate will be sent to you by email.
  • The email message includes the web server certificate that you purchased in the body of the email message.
  • Copy the certificate from the body of the email and paste it into a text editor (such as notepad) to create text files.
  • Name this file 'Server.txt'.

Installing the Root and Intermediate Certificates

You will be receiving the following five files from Sectigo:

  • Root AddTrustExternalCARoot.crt
  • Intermediate CA UTNAddTrustSGCCA.crt
  • Intermediate CA ComodoUTNSGCCA.crt
  • Intermediate CA EssentialSSLCA.crt
  • domain/site certificate yourdomainname.crt

Or you can download the EssentialSSLCA files from here.

Create 4 text files.

  • The first file should be the AddTrustExternalCARoot.crt.Name this file 'root.txt'.
  • The second file should be the UTNAddTrustSGCCA.crt Name this file 'UTN.txt'.
  • The third file should be the ComodoUTNSGCCA.crt Name this file 'comodo.txt'
  • The fourth file should be the EssentialSSLCA.crt Name this file 'essential.txt'

Note: Be sure to include the -----BEGIN CERTIFICATE----- line and the ------END CERTIFICATE----- line. < p password. the for prompted be will You keyfile.kyr). (usually file of name Type file. ring key existing an open to O Select mkkf typing by utility MKKF Start>

Note: If you start the 'mkkf' utility from the directory that contains your certificates you will not need to include the path.

  • Select R to receive a certificate into the Key Ring File
  • You will be prompted for the file name. Enter root.txt
  • Enter Root certificate name (the file name supplied on the file) for the label
  • Press 'Enter' to continue
  • Select W to work with Keys and Certificates
  • Select L to List/Select the key to work with
  • Find the entry you made above (the file name supplied on the file) and select S to select this menu
  • Select T to mark this as a 'Trusted' root
  • Select Y - Yes, to confirm this request
  • Press 'Enter' to return to the pervious menu
  • Select X to exit the menu

Repeat from 'Select R' using the Sectigo Intermediate certificates
Substitute Root certificate name (the file name supplied on the file) with Intermediate CA certificate name (the file name supplied on the file)

Installing your Web Server Certificate

  • From the main menu of the mkkf utility, select R to Receive a certificate into a Key Ring File
  • Enter the server certificate file name (eg. 'server.txt')
  • Select W to Work with keys and certificates
  • Select L to List/Select the key to work with. Select N until you find the required file
  • Select S to Select this certificate
  • Select F to mark this key as the selected default key
  • Select X to exit this menu
  • Select C to Create a 'stash file' for the key ring
  • Note: This is an important step, which is often overlooked
  • Select X to exit the menu
  • Select Y - Yes, to save all changes to the key file and confirm the update

Enabling SSL on your Domino Go Web Server

  • Access the web server via your browser. Select 'Configuration and Administration Forms'
  • Scroll down to security. Select Security Configuration
  • Ensure 'Allow SSL connections using port 443' is selected
  • Ensure that the correct Key Ring file is listed
  • Apply the changes

You will then need to restart your Web Server