Hi there,
I have never done this before but this is being required by our company … looked around in Admin help and found quite a bit of info to set this up …
Have a couple of questions (pardon my understanding of the whole subject):
-
Can I use the Domino CA to issue internet certificates for users in other companies in addition to our own employees to send/receive encrypted (SMIME) e-mails over internet? The only reason for asking this is for a scenario where external users do not have their own internet certificates (for any reason) … or this may be just another absurd thought !
-
If i am setting up the domino server just as Internet Certificate authority I don’t need to 'migrate existing certifiers to the CA process … correct ?? I just create a new internet certifier and add it to the CA process …
Thanks for all your inputs !
Subject: Setting up Domino CA to issue internet certs for SMIME
Yes on both counts. Anybody with web access to the server running the correct DB could connect to it with a web browser and request an internet certificate, and the “migrate existing certifiers…” functionality is for Notes certifier IDs.
dave
Subject: RE: Setting up Domino CA to issue internet certs for SMIME
Thanks a lot Dave !
Everything went ok here … I submitted a test request for internet certificate via a web browser for myself … saw it in Adminp … saw it processed it … but i did not get any pick-up URL nor can I find where it would have stored the certificate - could not find it in ICL - [Certicom Internet Certifier] or in the person doc … I authenticated my client with the server hoping it would download the certificate on my id file but it did’nt … how long does it take for it to actually post the certificate …?
Any ideas or should i just wait ?