Previous Topic: Sign the Agents Used by the ConnectorNext Topic: Add NCSO.jar to the Lotus Domino Connector

Connector GuidesConnectors GuideConnecting to EndpointsLotus Domino ConnectorLND Support for FIPS and IPv6Enable SSL between Lotus Domino and CA IAM CS

Enable SSL between Lotus Domino and CA IAM CS

Communication between the Lotus Domino connector and the endpoint is not encrypted by default. To secure the connection, use SSL encryption. This is optional, but recommended.

Follow these steps:

  1. The Domino administrator does the following:
    1. Configure the Lotus Domino endpoint to accept SSL connections.
    2. IBM provides the following documentation on SSL Encryption:

      http://publib.boulder.ibm.com/infocenter/domhelp/v8r0/topic/com.ibm.help.domino.admin85.doc/H_ABOUT_SETTING_UP_SSL_ON_A_SERVER.html

      http://www.ibm.com/developerworks/lotus/library/ls-Java_access_2/index.html

    3. After the keyring files are on the server, start or restart the DIIOP task. This generates a file named TrustedCerts.class in the following location: 
      lotus_home/Lotus/Domino/data/domino/Java/
    4. Send the file to the CA GovernanceMinder integrator (if applicable).
  2. The CA IdentityMinder administrator does the following:
    1. Save the TrustedCerts.class file in this location: 
      cs_home/extlib/
    2. Restart the CA IAM CS service (im_jcs).

In the next procedure, you add this class to the connector.