Hello,
I'm trying to migrate process enabled CA certifier to another domino server as described in KB article KB0033151.
At step 5 I choose Require password to activate, fill password in twice and click OK. Then I confirm dialog - ... continue? - Yes. But it doesn't end with Success. There is an error instead: "Cannot locate user certificate. Make sure server contains your certificate for encryption." I don't know which user certificate is the action looking for.
Hello @Jan Papež !
Please check your location document.
The "Home/mail server" on Servers tab should point to the server which has the public key of the person who is performing the task.
Additionally, on Mail tab, make sure "Mail file location" is "on Server".
I hope it helps!
Please mark this question as answered and helpful if your issue is resolved.
Regards!
Rodrigo de San Vicente
Staff Software Engineer
Collaborative Workflow Platform
Hello @Rodrigo San Vicente,
thank you for the tip. I've updated Mail file location to "on Server" and it helped.
BUT I've received another warning: "Could not complete this operation. Certifier had previously migrated. Please use 'Modify Certifier...' process to modify the certifier." I was in Modify Certifier, so it was strange. I closed dialogs and tried to open 'Modify Certifier...'.
Now it requires to add certfier ID to open the ICL (when I try to open the same CA Process). When I add it through Advanced button, it asks for password and after successful confirmation it gives me an error: "The provided certifier id cannot be validated against the icl database. The process needs the certifier id file to proceed, please provide the correct certifier id."
I've tried to file-level copy ICL database to destination server. I enter path to the ICL DB, add certifier ID and enter the password for it, but it gives me the same error with the wrong certifier ID. It looks that something had been changed in the ICL, but I do not know what.
When I try to start CA proces at original server, it returns error:
CA Process: Issued Certificate List does not contain certifier id document for O=Company.: Entry not found in index
CA Process Error initializing certifier context (O=Company) from ICL db IDStorage form: Entry not found in index
Finally! I've realized that the problem with certifier ID could be resolved on the server B. I've probably set the activation password through server B and it was possible to modify it again only on server B. I've done it, moved the file and imported through Modify certifier and selecting ICL path as described.
Hi Jan. Are you saying that you set a password but was working on a different server when you used the tool for modify certifier?