Lately I had to set up a Extended Validation SSL Certificate on a Domino 7.0.3 server. You know that kind of SSL certificate which let the address bar on the browser glow in this friendly green. I just created the "Server Certificate Admin" database on the server, generated a new key and went to the website of the service provider to apply the certification. (Andrew Pollack has a nice presentation "Creating an SSL Certificate for IBM Lotus Domino" in his blog.)
To my surprise the service provider refused it with a cryptic error message. After contacting support I found out where the problem was.
An EV-SSL certificate needs a 2048er key length. Unfortunately the only choices in the "Server Certificate Admin" database on Domino 7.0.3 while creating the key were 512 or 1024.
So I used an existing Domino 8.5 server and with the template on that server there was suddenly another option: 2048.
A test certificate with this key length worked fine on the Domino 7.0.3 server. With a little faith I went to the website of the service provider again and this time everything went through. For two month the certificate is running on the production server without any problems.
At the marvelous Engage conference I had the honor to speak about "How to get my app on mobile?". Between the obvious choices of having a … more