SECURING


Managing certificates with the Let's Encrypt CA

CertMgr simplifies and secures Domino web server operations by providing the ability to automatically request, configure, and renew free, widely trusted TLS certificates from the Let's Encrypt certificate authority (CA) using the ACME protocol.

For more details on the Let's Encrypt CA, see their https://letsencrypt.org/about/.

Certificate signing requests are configured and generated through a domain-wide database called Certificate Store (certstore.nsf). CertMgr creates this database on a server the first time it runs.

Note: Before using the Let's Encrypt certificate authority, you must accept the terms of their https://letsencrypt.org/repository/. This step is done as part of creating a certificate request, either through an option in the account document in Certificate Store (certstore.nsf) or through a command line option.

Let's Encrypt is a trademark of the Internet Security Research Group. All rights reserved.


Parent topic: Managing TLS certificates with Certificate Manager