JOIN OUR AFFILIATE NETWORK

Join our affiliate network and become a local SSL expert

♦ learn more about our program ♦
Menu
picture of tbs certificates
picture of tbs certificates
Certificates
Our products range
Partners
Support
Focus


Generate a CSR for Domino

The generation of a CSR for Domino requires the creation of a "Key Ring" internal to the Domino application. Therefore, it is strongly advised not to use our tool Keybot to generate the CSR. The documentation below is there to guide you step by step to generate a CSR with Domino.

Creation of Key Ring

  1. From the Notes client, open the "Server Certificate Admin" application on the server on which you want to enable SSL

  2. Click on "Create Key Ring"

  3. Complete the following fields:

    • Key Ring File Name : enter the name of the Key Ring file. By default, this name is "keyfile.kyr"
    • Key Ring Password : choose a password for the Key Ring
    • Key Size : choose the length of the key. The recommended size is 2048-bit.
    • Common Name : enter the FQDN name of the server. For example www.mydomain.com
    • Organization : enter the name of your organization. For example the name of your company.
    • Organization Unit (optional field): enter the name of your company's division
    • City or Locality : enter the name of the city where your company is located.
    • State or Province : enter the full name of your state/province where your company is located
    • Country : Enter the first two characters of the country where the company resides. For example US

  4. Click on "Create Key Ring"

  5. After checking the Key Ring information, click "OK". The Notes client will create the Key Ring file and an .STH file. These files will be placed in the "data" folder of the computer where the Notes client was run.

  6. Copy these two files to the "data" folder on the Domino server

Génération of CSR

  1. From the Notes client, open the "Server Certificate Admin" application on the server on which you want to enable SSL

  2. Click on "Create Certificate Request"

  3. Complete the following fields:

    • Key Ring File name : enter the name of the key ring file including the path
    • Log Certificate Request : choose option 1 to log the information into the application. Otherwise choose option 2
    • Method : choose option "1. Paste into form on CA's site (recommended)"

  4. Click on "Create Certificate Request."

  5. Enter the key ring password

  6. Copy and paste the CSR (including the lines "BEGIN CERTIFICATE" and "END CERTIFICATE") in the Order form

Useful links