SECURING
You can create additional HCL Notes® and Internet certifiers for your organization and configure them to use the CA process.
To create a Notes certifier
About this task
Notes certifiers are created first, and then migrated to the CA process.
Procedure
1. Register an additional organization certifier or organizational-unit certifier.
2. Migrate the certifier to the CA process.
To create an Internet certifier
Internet certifiers are created and registered using the CA process.
1. From the HCL Domino Administrator, click Configuration.
2. On the Tools pane, select Registration -> Internet Certifier.
3. In the Register Internet Certifier dialog box, select I want to register a new Internet certifier that uses the CA process.
4. In the Register a New Internet Certifier dialog box, click Basics.
5. Create the certifier name. Specify a common name and at least one additional component:
7. Optional: Modify the default ICL database name (for example: icl\icl_Renovations.nsf).
tell ca activate password
tell ca unlockidfilepassword
Note: Encrypting a certifier ID with the password-protected Server ID protects only that certifier. If you use a lock ID, you have the option of using it with multiple certifiers. You then need to lock and unlock those certifiers simultaneously.
10. On the Certificates tab, complete these fields:
Note: The only certificate type you can create is an end -entity certificate, and the option is enabled by default. This means that Internet certificates issued by this certifier apply to users of certificates and/or end-user systems that are subjects of a certificate.
12. Complete these fields to specify Certificate Revocation List information for this certifier:
Note: A PKIX Alternative Name is not the same as a Notes alternate name. The Notes alternate name is the foreign language version of a user name.
Results
A message appears saying that you have successfully set up a CA.
What to do next
Complete these procedures:
Related tasks Creating an additional organization certifier ID Creating an organizational unit certifier ID Migrating a certifier to the CA process Setting up a server-based Domino certification authority