SECURING
Each Internet certifier you create requires a Certificate Requests database (CERTREQ.NSF) to manage the server keyring file and allow users to request client certificates from the browser or through email. This database stores active certificate and revocation requests that have been submitted to the Administration Process for processing. Using a browser-based interface, servers and clients request certificates and pick up issued certificates.
About this task
You can store Certificate Requests databases on any server in the domain, including servers that reside outside of a network firewall.
For more information on using the Certificate Requests database to process certificate requests, see the related information.
Procedure
1. Choose File -> Application -> New and select the server to store the Certificate Requests database.
2. Enter the database title, for example Certificate Requests.
3. Enter the file name, for example certreq.nsf
4. Choose the Certificate Requests template (CERTREQ.NTF).
5. Click OK. When the Certificate Requests database has been created, it will open and the "About..." document will appear.
6. Close the "About..." document, and the Database Configuration form will appear.
7. In the Database Administration section, complete these fields:
1. In the Server field, enter the name of the server that hosts the Internet certifier.
2. In the Certifier field, enter the name of the Internet certifier to associate with the Certificate Request database.
Note: If the Automatic method is chosen, the administrator (signer of the agent) must be listed in the group of users who can run unrestricted methods and operations on the server. This can be set on the Security tab in the Server document. There must also be a replica of the Certificate Requests database on the specified transfer server.
Parent topic: Domino server-based certification authority
Related concepts TLS and S/MIME for clients
Related tasks To create an Internet certifier