midpoints Let's Encrypt for Domino (LE4D)
»Why midpoints Let’s Encrypt 4 Domino?«
To enable HTTPS on your website, you need to get a certificate (a type of file) from a public Certificate Authority (CA). Let’s Encrypt is such a CA, which offers free trusted certificates.
There are several clients around to retrieve a certificate from Let’s Encrypt. But none of them offer a consistent way to automate the process, when using Domino as your HTTP-Server. Either the client tool is only available for Linux, or you have to install additional Perl/Python interpreter on your Domino server machine to run scripts. And then there is the Domino properitary keystore format.
midpoints Let's Encrypt for Domino closes this gap.
We at midpoints were looking for a solution to get Let’s Encrypt certificates working together with Domino as close and automated as possible. So we started the midpoints Let’s Encrypt 4 Domino project for internal use.
Let’s Encrypt for Domino == Let’s Encrypt 4 Domino == LE4D (spoken as lead)
After we got it working, we decided to make the tool available for free, because the Let's Encrypt certs are for free and so midpoints LE4D should be free, too. SSL is important and you should use it.
Yes, you can use it for FREE!
midpoints Let's Encrypt 4 Domino
How can I get a free copy of midpoints Let's Encrypt 4 Domino or submit a support / feature request?
It's simple, just fill out the form to get your copy of Let's Encrypt 4 Domino or to get in touch.
After we received your request, we will send you the installation package by mail within the next 24 hours.
Provides all parts of the certificate creation / renewal process in a single Domino application.
LE4D will support Alternative Subject Names as Let's Encrypt does, which will allow you to put multiple domain / subdomains into one cert.
midpoints LE4D let you fully automate the process, including renewal of certificates in the key ring file and HTTP task restart.
What midpoints LE4D will do in detail?
The short answer - A lot!
In more details:
- Creates a Let's Encrypt User and Domain Keys
- Creates and puts Let's Encrypt Challenge on your server
- Creates and sends the Signing Request CSR to Let's Encrypt
- Downloads the certificate
- Downloads the Key Chain
- Generates the Domino Key Ring files using the HCL KYRTOOL
- Merges the certificates and chain into the Key Ring
- Backups the generated certificates
- Restarts the HTTP Task
- Periodic Renewal of certificates, when needed
The midpoints LE4D download package includes:
- midpoints Let's Encrypt 4 Domino Template (a NTF file)
- NTF includes Notes UI, a XPage and an agent
- First Step Guide
- Besides HCL KYRTOOL no other 3rd party tool needed
The installation & configuration is easy:
- Create a new database on your Domino Server based on the Template
- Sign the database
- Change/ Customize the LE4D database ACL
- Put the HCL KYRTOOL on your server
- Open the LE4D database and create a new setting document.
- Run the included Agent on your server
That's it: You have got your first Let's Encrypt certificate, which is already in a Domino Key Ring (KYR) file ready to use.
At this place we would like to thank our midpoints employees Ulrich Krause aka eknori and Detlev Poettgen aka netzgoetter for digging into the Let's Encrypt API to make LE4D possible.
And we would like to thank Let's Encrypt and the Let's Encrypt community to provide their great Let's Encrypt Cert service.
You can get more information regarding Let's Encrypt and how Let's Encrypt works in general here:
https://letsencrypt.org/docs/