I am about to set up SSL on our 8.5 Domino server, for securing iNotes users. I have been trying to read the documentation and forums, but have some questions that I hope to get help on here.
We are going to buy a commercial certificate from a official certifier, but this certifier is not preregistered as Internet Certifier in Domino.
The server is set up to use CA, and I have made the certsrv.nsf database. Do I have to register the certifier as a Internet Certifier before I create the Key ring, or should I create the key ring first?
Also, do I need the exact name/common name, organization etc. from the Certifier before we register them as a certifier in Domino, or will this come with the certificate?
I have been reading that the SSL Common Name should be the fully qualified internet name of the server. What if this is different from the internet domain used by our iNotes users. Should I then use this domain?
I have seen different suggestions setting up SSL, but do not understand when to use which solution.