Home
Deploying
IBM® Sametime® consists of a variety of servers and clients, and can be deployed to suit many different environments. The deployment instructions are organized by feature set, beginning with the minimum components that are necessary to support instant messaging, and then expanding the deployment to include features such as audio and video support, and conferencing.
Deploying instant messaging
Instant messaging features are provided primarily by the IBM® Sametime® Community Server, which supports presence, text chats, and two-way phone calls.
Securing the Sametime® Community Server
The IBM® Sametime® server uses the Internet and intranet security features of the Domino® server on which it is installed to authenticate web browser users who access Domino databases on the server.
Configuring Sametime® Community Server to use SSL encryption
Configure IBM® Sametime® Community Server to use SSL (Secure Socket Layer) for its services; and configure HTTPS when communicating with Web clients or enable LDAPS (LDAP over SSL) with the LDAP server.
Enabling encryption between a Sametime® Community Server and the LDAP server
Configure SSL encryption between an IBM® Sametime® Community Server and an LDAP server by enabling the LDAPS protocol.
Importing a copy of the LDAP server's trusted root certificate
Import a copy of the LDAP server's trusted root SSL certificate into the truststore on the IBM® Sametime® server to encrypt communications between Sametime and the LDAP server.
Importing a trusted root certificate
To enable SSL between IBM® Sametime® and an LDAP server, import the server's trusted root certificate into the trust store.

Importing a trusted root certificate

To enable SSL between IBM® Sametime® and an LDAP server, import the server's trusted root certificate into the trust store.

About this task

Follow these steps to import the SSL certificate into the trust store on the Sametime server:

Procedure

Start the iKeyMan utility.
For instructions about starting the iKeyMan utility, see the topic Using iKeyMan to manage certificates for TLS.
Open the trust store file.
Switch to Signer Certificates.
Click Add.
In the "Open" dialog box, do the following:
1. Browse to and select the file into which you copied the SSL certificate in the last procedure (for example, CA.txt).
2. Click OK.
In the "Enter a Label" dialog box, do the following:
1. Type a label for the certificate.
  This label identifies the certificate in the Signer Certificates list of the IBM IKeyMan program.
2. Click OK.
  The new certificate's label appears in the list of Signer Certificates.
Close the trust store file.
Close the IKeyMan utility.