Set up SSL on a Domino® server so that clients and servers that connect to the server use SSL to ensure privacy and authentication on the network. You set up SSL on a protocol-by-protocol basis. For example, you can enable SSL for mail protocols -- such as IMAP, POP3, and SMTP -- and not for other protocols.

Procedure

1. Generate a keyring file with a self-signed or third-party certficate.

2. Configure the port for SSL.

3. If you are using client authentication, add the client's name to database ACLs and access lists for design elements.

Generating a keyring file with a self-signed or third-party certificate
To set up SSL on your server, you need a key ring containing a server certificate from an Internet certificate authority.

SSL port configuration
The SSL protocol always provides an encrypted, integrity-checked, communications channel and authenticated server identity. SSL servers can be optionally configured to request various forms of client identity authentication.

Configuring a port for SSL
You can configure a port to use only server authentication or to use both server and client authentication.

Requiring an SSL connection to a server
Require SSL connections when you want to make sure that clients use a secure connection to access databases on the server. You do this by redirecting connection requests that come in over the TCP/IP port to the SSL port. If you do not require an SSL connection, clients can use either SSL or TCP/IP to connect to the server.

Related concepts
Generating a keyring file with a self-signed or third-party certificate
Setting up database access for SSL clients
SSL and S/MIME for clients
SSL security

Related tasks
Configuring a port for SSL
Registering a Domino server

Help on Help

All Help Contents

Help on Help