SECURING
Set up SSL on a Domino® server so that clients and servers that connect to the server use SSL to ensure privacy and authentication on the network. You set up SSL on a protocol-by-protocol basis. For example, you can enable SSL for mail protocols -- such as IMAP, POP3, and SMTP -- and not for other protocols.
Procedure
1. Generate a keyring file with a self-signed or third-party certficate.
2. Configure the port for SSL.
3. If you are using client authentication, add the client's name to database ACLs and access lists for design elements.
SSL port configuration The SSL protocol always provides an encrypted, integrity-checked, communications channel and authenticated server identity. SSL servers can be optionally configured to request various forms of client identity authentication.
Configuring a port for SSL You can configure a port to use only server authentication or to use both server and client authentication.
Requiring an SSL connection to a server Require SSL connections when you want to make sure that clients use a secure connection to access databases on the server. You do this by redirecting connection requests that come in over the TCP/IP port to the SSL port. If you do not require an SSL connection, clients can use either SSL or TCP/IP to connect to the server.
Related concepts Generating a keyring file with a self-signed or third-party certificate Setting up database access for SSL clients SSL and S/MIME for clients SSL security
Related tasks Configuring a port for SSL Registering a Domino server