Good Afternoon HCL Community
I am seeking guidance and support in Installing PositiveSSL Wildcard on my Domino Server running on RHEL 9.0 Plow and on HCL Domino 14.0 FP1.I am running mail services on the server and would like to securre
Hello Ian,
I understand that the current certificate, which is running on the Domino server, is issued by your internal CA, and the certificate is also expired as below.
You wanted to deploy a valid wild card TLS certificate issued by a trusted certificate authority on the Domino server.
Is that the requirement for the SSL certificate?.
If yes, then let me know if you have already issued a TLS certificate from the trusted CA.
You may want to have a look at the below document on "How to import TLS certificates issued from a third-party into certstore.nsf"
Thank you and let me know if you having other requirement for deploying wild card certificate.
Thank you
Regards
Shrikant J
@Shrikant Jamkhandi Correct I want to deploy a Validated Wild Card SSL issued by Namecheap on the Domino Server.I already have a TLS certificate ..Check below if okay
@Shrikant Jamkhandi .My HCL Domino 14 is running on a Red Hat Enterprise Linux 9
Hi Ian, It doesn't matter if the Domino is running on Windows or Linux. From the below screen shot, I can see only certs. You need to get the private key along with all certs ( server/intermediate/root).
Once you have all the required files. You can merge into a single file using the type command on the Windows. This has been described in the KB
I shared this KB link in my earlier response. You can use the merged single file to import in the certstore.nsf database to create TLS credentials.
Thank you.
Regards
Shrikant J
@Shrikant Jamkhandi .The third-party TLS certificate host is giving me the certs only.Should i get the private key from the provider or from the server?
Hello Ian,
It depends; if you or your security team has generated the CSR, then you should have the private key.
If not, then if everything was generated from the CA vendor, then they should be having the private key.
For the TLS certificate to work on the web server, a private key is a must.
Thank you
Regards
Shrikant J
@Shrikant Jamkhandi Many Thanks for the guide.I managed to get the private key.
Let me follow the guide on the KB and see if it works.Our domino is used for email services only
Hello Ian,
Yes please, following the KB should help you to deploy the TLS certs on the Domino server.
Mark this forum thread as Answered and Helpful if it resolves your issue.
Thank you
regards
Shrikant J