APPLICATION MANAGEMENT

Enforcing encrypted Web transactions using SSL
The Secure Sockets Layer (SSL) is a security protocol that protects data by encrypting it as it passes between servers and Web clients. SSL provides communications privacy and authentication for Domino server tasks that operate over TCP/IP. You can require users to access a database using a secure SSL connection to a single database or to all databases on a server. A common use for this type of added security occurs in an e-commerce application in which Web users enter confidential information such as credit card numbers.

If you do not require an SSL connection, clients can use either SSL or TCP/IP to connect to the server.

The server administrator enables the SSL port in either the Internet Site document or the Server document of the IBMR LotusR Domino(TM) Directory. Then, to protect transactions in individual databases -- for example, in databases used for commercial transactions -- the database designer assigns the database property "Web Access: Require SSL Connection."

Note that the server administrator actually has three options in allowing access over the SSL port:


To require an SSL connection to a database

1. Make sure you have Manager access in the database ACL.

2. Select the database icon from the bookmarks page.

3. Choose File - Database - Properties.

4. On the Basics tab, choose Web access: Require SSL connection.

For more information, see Lotus Domino Administrator Help.

See Also