Viewing TLS server certificates
You can view information about TLS server certifications
About this task
Note: This procedure describes steps used in Domino 11 and earlier versions. As of Domino 12, use
of Certificate Manager and Certificate Store (certstore.nsf) is the preferred method for
generating and managing certificates. For more information, see Managing TLS certificates with Certificate Manager.
Each TLS server certificate contains this information:
- The expiration date. The default trusted roots that come with Domino® do not have expiration dates.
- The distinguished name of the server that requested the certificate.
- The distinguished name of the CA that signed the certificate.
- The size of the public key. The size determines the strength of the encrypted public key.
To view an TLS server certificate
Procedure
- Map a network drive to the directory that contains the key ring file.
- From the Notes® client, open the Server Certificate Admin (CERTSRV.NSF) application.
- Click View & Edit Key Rings.
- Click Choose Key Ring to Display.
- Enter the name of the key ring file that contains the certificates you want to view.
- Enter the password for the key ring file.
- Do one of these:
- To view the server certificate, select a document in the Site Certificates category.
- To view a trusted root certificate, select a document in the Certification Authorities category.