Creating a Group Policy Object to deploy the Domino SSL certificate
In order for Microsoft™ Outlook and the IBM® mail add-in to work correctly with IBM Domino®, it is important that the Domino® server's SSL certificate is trusted by the client.
About this task
This can be done by having users import the certificate through Internet Explorer. However, there
may be situations where the client user account does not have permissions to modify
Trusted Publisheror
Trusted Root Certification Authoritykeys, or where there is a desire to automate this process. If the computers on the network are managed via Active Directory, a Group Policy Object is the best way to deploy certificates to users.
- Obtain the server certificate - If the SSL certificate was generated by Domino®, the public key can be extracted via request from a browser.
- Create/Update a Group Policy Object - A new or existing GPO can be used to distribute the public
certificate exported from the previous step.
- Windows™ Server 2008 R2 Instructions - http://technet.microsoft.com/en-us/library/cc772491.aspx
- Windows™ Server 2012 Instructions - http://technet.microsoft.com/en-us/library/dd807084.aspx