To install your Thawte Certificate on a Lotus Domino Go server, perform the following steps
Step 1: Download the Root and Intermediate CA Certificates
- Download the Root CA certificate from this link: Thawte Root
- Copy the file to your clipboard and save it as TrustedRoot.txt
- Download the Intermediate CA certificate from this link: INFO1384
- Select the appropriate Intermediate CA certificate for your SSL Certificate type.
- Copy the Intermediate CA certificate and paste it on your clipboard
- Make sure there are 5 dashes to either side of the BEGIN CERTIFICATE and END CERTIFICATE and that no white spaces, extra line breaks or additional characters have been inadvertently added.
- Save the file as intermediate.txt
NOTE: Ensure that the correct Root and Intermediate CA certificate has been selected for your SSL product.
Step 2: Installing the Root and Intermediate Certificate
Create 2 text files:
- The first file should be the Root Certificate. Name this file "root.txt".
- The second file should be the Intermediate CA Name this file "inter.txt".
Note: Be sure to include the -----BEGIN CERTIFICATE----- line and the ------END CERTIFICATE----- line. < p password. the for prompted be will You keyfile.kyr). (usually file of name Type file. ring key existing an open to O Select mkkf typing by utility MKKF Start>
Note: If you start the 'mkkf' utility from the directory that contains your certificates you will not need to include the path.
- Select R to receive a certificate into the Key Ring File.
- You will be prompted for the file name. Enter root.txt
- Enter Root certificate name (the file name supplied on the file) for the label.
- Press 'Enter' to continue.
- Select W to work with Keys and Certificates
- Select L to List/Select the key to work with
- Find the entry you made above (the file name supplied on the file) and select S to select this menu
- Select T to mark this as a 'Trusted' root
- Select Y - Yes, to confirm this request
- Press 'Enter' to return to the pervious menu
- Select X to exit the menu
- Repeat from 'Select R' (from point 1 to 11) using the Intermediate certificate
- Substitute root.txt with intermediate.txt
- Substitute Root certificate name (the file name supplied on the file) with Intermediate CA certificate name (the file name supplied on the file)
Step 3: Installing your Certificate
- From the main menu of the mkkf utility, select R to Receive a certificate into a Key Ring File
- Enter the server certificate file name (eg. "server.txt")
- Select W to Work with keys and certificates
- Select L to List/Select the key to work with. Select N until you find the required file
- Select S to Select this certificate
- Select F to mark this key as the selected default key
- Select X to exit this menu
- Select C to Create a 'stash file' for the key ring
Note: This is an important step, which is often overlooked
- Select X to exit the menu
- Select Y - Yes, to save all changes to the key file and confirm the update
Step 4: Enabling SSL on your Domino Go Web Server
Access the web server via your browser. Select 'Configuration and Administration Forms'
Scroll down to security. Select Security Configuration
Ensure 'Allow SSL connections using port 443' is selected
Ensure that the correct Key Ring file is listed
Apply the changes
You will then need to restart your Web Server