HCL Notes and Domino 9.0 Social Edition Forum - The problem is the encryption key strength

This forum is closed to new posts and responses. Individual names altered for privacy purposes. The information contained in this website is provided for informational purposes only and should not be construed as a forum for customer support requests. Any customer support requests should be directed to the official HCL customer support channels below:

HCL Software Customer Support Portal for U.S. Federal Government clients
HCL Software Customer Support Portal

Share ▼
Subscribe ▼

~Chloe Optumiburynds

Jun 19, 2014, 5:25 PM

5 Posts

The problem is the encryption key strength

Category: Domino Server
Platform: Windows
Release: 9.0.1
Role: Administrator
Tags: IE8,IE 8,SSL
Replies: 4

Self-signed Domino certs are created with a 512-bit key by default, and no obvious way to change it. Is there a way in code?

~Sven Nimgerosterflar

Jun 19, 2014, 5:31 PM

46 Posts

Do not use self signed certs

certificates under 1024 are blocked

http://blogs.technet.com/b/pki/archive/2012/06/12/rsa-keys-under-1024-bits-are-blocked.aspx

http://blogs.technet.com/b/pki/archive/2012/07/13/blocking-rsa-keys-less-than-1024-bits-part-2.aspx

Do not use a self signed cert. If you want more flexibility follow this guide which uses Domino as the CA
http://www-01.ibm.com/support/docview.wss?rs=463&uid=swg21193730

Share ▼
Subscribe ▼