We recently purchased a wildcard certificate from Digicert.
We have the .CSR file and .KEY file with which we requested the certificate from Digicert.
Once the certificate is purchased, Digicert offers us different format options to download:
On the other hand, there is the certstore.nsf database where I go to the Create TLS Credentials button, and it offers me this:
Assuming the wildcard was *.ACME.com... in points 1, 2, 3, 4 and 5 "I think" the information is correct (if not, please correct me).
Now then... what format should I download from Digicert (first image), and what option should I select on Import TLS Credentials ¿?
You can refer the below KB article and see if that helps.
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0102662
Thank you
Regards
Shrikant J
Download a SINGLE pem file containing all the certs, (your high lighted option) it is base64 encoded text format.
choose Base64-encoded .....(second option in format) in domino.
Hope this helps
Hello.
Without dowinloading at each format, it is hard to know which one is best.
However, "indivisual crts (zipped)" looks good.
I think you can now download the following as separate files.
- server certificate (server.crt)
- root certificate (root.crt)
- intermediate certificate (intermeiate.crt)
And I assume you have the following file.
- private key (server.key)
Do the following command from command prompt.
>type server.key server.crt intermediate.crt root.cer > fullchain.pem
Import the fullchain.pem you just created in certstore.nsf.
Regards,
Shigemitsu Tanaka
Translated with www.DeepL.com/Translator (free version)
Hi.
You may wish to check a previous post of mine where exactly this is discussed, and all required details are presented:
HCL Notes/Domino - How to use CertMgr to import a wildcard certificate generated from a third party source and signed by a third party CA? - Community
Hope this helps.
Regards,
Elvsi
