Managing certificates with the Let's Encrypt CA

CertMgr simplifies and secures Domino web server operations by providing the ability to automatically request, configure, and renew free, widely trusted TLS certificates from the Let's Encrypt® certificate authority (CA) using the ACME protocol.

For more details on the Let's Encrypt® CA, see their web site.

Certificate signing requests are configured and generated through a domain-wide database called Certificate Store (certstore.nsf). CertMgr creates this database on a server the first time it runs.

Note: Before using the Let's Encrypt® certificate authority, you must accept the terms of their Subscriber Agreement. This step is done as part of creating a certificate request, either through an option in the account document in Certificate Store (certstore.nsf) or through a command line option.

Let's Encrypt® is a trademark of the Internet Security Research Group. All rights reserved.