Configuring CertMgr to connect through a proxy
If CertMgr connects to Let's Encrypt® servers through a proxy server, configure a proxy account document in certstore.nsf to enable the connection.
About this task
To request certificates using HTTP-01 challenges, the CertMgr task on a Domino server needs to communicate with the Let's Encrypt® servers over HTTPs (port 443/TCP). CertMgr can communicate through a direct connection or a proxy connection, either anonymous or authenticated. The connection configuration, user name, and password are stored securely in an account document in certstore.nsf.
If CertMgr connects to Let's Encrypt® servers through a proxy
server, create or edit a proxy account document in the Password Store view of
certstore.nsf. A default account document is created automatically but is disabled. You can edit
this document or create a new one. To configure a proxy connection, complete the following
fields:
- Status: Enabled
- Account Name/ID: <name>
- Server URI: <proxy_server_uri> For example, http://proxy.acme.com:8080
- User name: <user name> (For authenticated connection only)
- Password: <password> (For authenticated connection only)
- Domino server names: <Servers that run CertMgr to request certificates through the proxy>
Note: This account document is necessary for proxy connections only.