Domino: Criando certificados auto-assinados sha256
Procedimento
) Criar chave auto-assinada
openssl genrsa -out correioverse.key 4096
Verificar
cat correioverse.key
Executar
openssl req -new -sha256 -key correioverse.key -out correioverse.csr
Verificar
cat correioverse.csr
Executar
openssl x509 -req -days 3650 -sha256 -in correioverse.csr -signkey correioverse.key -out correioverse.pem
Verificar
cat correioverse.pem
) Baixar arquivo kyrtool.exe
) Copiar para o diretório do notes client
) Criar a keyring
kyrtool =C:\IBM\notes\notes.ini create -k C:\IBM\Notes\Data\correioverse.kyr -p <COLOQUE_UMA_SENHA> Keyfile C:\IBM\Notes\Data\correioverse.kyr created successfully
) Juntar os arquivos
type correioverse.key correioverse.pem > server.txt
) Verificar o arquivo keyring
kyrtool =C:\IBM\Notes\notes.ini verify C:\IBM\Notes\server.txt
KyrTool v1.0 Successfully read 4096 bit RSA private key INFO: Successfully read 1 certificates INFO: Private key matches leaf certificate INFO: Final certificate in chain is self-signed
) Importando o certificado para o arquivo kyr
kyrtool =C:\IBM\Notes\notes.ini import all -k C:\IBM\Notes\Data\correioverse.kyr -i C:\IBM\Notes\server.txt Using keyring path 'C:\IBM\Notes\Data\correioverse.kyr' Successfully read 4096 bit RSA private key SECIssUpdateKeyringPrivateKey succeeded SECIssUpdateKeyringLeafCert succeeded Examinando kyrtool =C:\IBM\Notes\notes.ini show keys -k C:\IBM\Notes\Data\correioverse.kyr kyrtool =C:\IBM\Notes\notes.ini show certs -k C:\IBM\Notes\Data\correioverse.kyr