Installation of the Lotus Domino 8.5 SSL certificate

If You Have Not Yet Generated a Certificate Signing Request (CSR) and Ordered Your Certificate,
read the CSR instructions -Create in Lotus Domino 8.5 .

Install SSL on a version 8.5 Lotus Domino web server

As with working with certificate keystores, when you import your SSL certificates to your Lotus Domino 8.5 web server, you must ensure that the files are imported into the same key ring that was used when you created your CSR. If this key ring is lost, you will need to create a new key ring / CSR and request a reissue in your Sectigo account before proceeding with the installation.

Your certificates must be installed on the key ring in the order described below.

AddTrustExternalCARoot.crt oder USERTrustRSACertificationAuthority.crt
SectigoRSAEV / OV / DVSecureServerCA.crt .crt (if included in your ZIP file)
your_domain.crt

1. Wählen Sie in der Domino Server-Zertifikatverwaltung die Option «Vertrauenswürdiges Stammzertifikat im Schlüsselring installieren».
2. Enter the file name you selected when you created your CSR, and then import your trusted root certificate (AddTrustExternalCARoot.crt or USERTrustRSACertificationAuthority.crt). You may see a message that your root certificate is already installed. In this case, simply go to step 3.
3. Wählen Sie erneut die Option «Vertrauenswürdiges Stammzertifikat im Schlüsselring installieren». Sie sollten jetzt Ihre Zwischenzertifikatdatei (en) installieren. Wenn Sie die Datei USERTrustRSACertificationAuthority.crt erhalten haben, müssen Sie diese zuerst importieren und anschließend diesen Schritt wiederholen, um die Datei SectigoRSADomainValidationSecureServerCA.crt zu importieren.Wenn Sie keine USERTrustRSACertificationAuthority.crt-Datei erhalten haben, importieren Sie jetzt Ihre SectigoRSADomainValidationSecureServerCA.crt-Datei.
4. In the next step, select the option to install the certificate in the key ring. Enter the name of the key ring and then import the file with the primary certificate (your_domain_name.crt).
   
   Your certificate is now installed and can be used on your IBM Domino server.

Note: Some chain files may differ from others. Use this article as a reference for installation. In addition, LOTUS Domino 8 may not support SHA-2 certificates and you may need to contact support for information about the requirements for SHA-2 certificates.