I have a Domino environment that was originally installed as 4.x or 5.x. It has since been upgraded to 5.x, 6.x, and is now running 7.0.4.
From time to time, I’m required to cross-certify external Notes users with my Domino servers. Recently, I have had a few issues. In particular, I’ve noticed I have problems cross-certifying if the external user has 2048 bit key strength.
Is this a limitation of Lotus Domino 7, or can I recertify my Domino server ID’s with higher key strength? I’ve noticed in the Domino Administrator client 7.0.4, my only options for registering new users/certifiers is 630 or 1024 bit. This implies the external user’s account was registered (or recertified) with Domino Administrator 8 or later, correct?
What are my options to allow cross-certification? I noticed in the external user’s safe ID, his organizational key strength is 630 bit. I’m guessing I could cross-certify his Org with my server, but that seems like a bad approach for security reasons.
Any advise is appreciated. I am going to post in the Lotus Notes/Domino 6/7 forum also, so I apologize if some people see this twice.