A CA vouches for the identity of both server and client by issuing Internet certificates that are stamped with the CA's digital signature. The digital signature ensures the client and server that both the client certificate and the server certificate can be trusted. The CA also issues trusted root certificates, which allow clients and servers with certificates created by different CAs to communicate with each another.

Each hosted organization must have its own Domino CA. If the hosted organization uses DOLS or if they require IBM® Lotus® Notes® IDs, the hosted organization must use the Domino server-based CA. If the hosted organization administrator plans to use the Web Administrator, that hosted organization must use the Domino server-based CA to register users.

As part of setting up a CA, create a Certificate Requests database. Then, using the Certificate Requests database, you can submit Internet certificate requests through a browser, pick up new or renewed certificates, and receive notification regarding request status.

See also

Setting up a server-based Domino certification authority
Administering a Domino CA
Creating the Certificate Requests database

Glossary