Creating an Internet cross-certificate for server-to-server TLS
One server can obtain an Internet cross-certificate from another server for the purposes of establishing trust. For example, if one server needs to access Directory Assistance on another server.
Procedure
- From the HCL Domino® Administrator, select . Switch to the server.id file.
- Select and enter the password for the server ID.
- Select .
- Select .
- Enter the host name of the server to be trusted. Click Ok to create the Internet cross certificate.
- Open the local Name and Address book (usually located in ...\notes\data\names.nsf) and open the view. Select the newly-created cross-certificate and copy it to the clipboard.
- Open the Domino Directory on the server that needs to access the trusted server. Open the view and paste the cross certificate in the view.