Home | SSL Certificate Products | FAQ | Support | Resellers | International | About Us | News | Contact Us
SSL Certificate Home

IBM-Lotus Domino Go 4.6.2.6+

Installing your SSL Certificate / Web Server Certificate / Secure Server Certificate from RapidSSL.com

Your certificate will be sent to you by email. The email message includes the web server certificate that you purchased in the body of the email message.

Copy the certificate from the body of the email and paste it into a text editor (such as notepad) to create text files.

Installing the Root Certificates

  1. Start the MKKF utility by typing mkkf


  2. Select "O" to Open an existing key ring file. Type the name of the file (usually keyfile.kyr). You will be prompted for the password.
    *Note: If you start the "mkkf" utility from the directory that contains your certificates you will not need to include the path.


  3. Select "R" to receive a certificate into the Key Ring File.


  4. You will be prompted for the file name. Enter thawteroot.txt


    5.
  5. Enter Thawte Server CA for the label.


    6.
  6. Press <Enter> to continue.


    7.
  7. Select "W" to work with Keys and Certificates.


    8.
  8. Select "L" to List/Select the key to work with.


    9.
  9. Find the "Thawte Server CA" and select "S" to Select this menu.


    10.
  10. Select "T" to mark this as a Trusted root.


    11.
  11. Select "Y" - Yes - to confirm this request.


    12.
  12. Press <Enter> to return to the pervious menu.


    13.
  13. Select "X" to exit the menu.


    14.
  14. Repeat steps 4 through 14 using the GeoTrust True BusinessID certificate.

    In Step 5, substitute " True BusinessID.txt."
    In Step 6, substitute "GeoTrust eBusiness CA."
    In Step 10, substitute " GeoTrust eBusiness CA."


Installing your Web Server Certificate

  1. From the main menu of the mkkf utility, select "R" to Receive a certificate into a Key Ring File


    2.
  2. Enter the server certificate file name (eg. "server.txt").


  3. Select "W" to Work with keys and certificates..


  4. Select "L" to List/Select the key to work with. Select "N" until you find the servername.key file.


  5. Select "S" to Select this certificate.


    6.
  6. Select "F" to mark this key as the selected deFault key.


  7. Select "X" to exit this menu..


    8.
  8. Select "C" to Create a "stash file" for the key ring.

    Note: This is an important step, which is often overlooked!


  9. Select "X" to exit the menu.


    10.
  10. Select "Y" - Yes - to save all changes to the key file and confirm the update.


Enabling SSL on your Domino Go Web Server

  1. Access the web server via your browser. Select "Configuration and Administration Forms."


  2. Scroll down to security. Select Security Configuration.


    3.
  3. Ensure that "Allow SSL connections using port 443" is selected.


    4.
  4. Ensure that the correct Key Ring file is listed.


  5. Apply the changes.


Restarting your Web Server

  1. You will need to stop and start your web server with the following commands: stopsrc -s httpd startsrc -s httpd


Test your certificate by using a browser to connect to your server. Use the https protocol directive (e.g. https://your server/) to indicate you wish to use secure HTTP.

The padlock icon on your browser will be displayed in the locked position if your certificates are installed correctly and the server is properly configured for SSL.

Troubleshooting

If you receive a "Cannot find certificate issuer among trusted roots" error message when importing the root certificate, please try converting it to a binary format certificate from a base 64 format certificate.