Colin R Tucker 17.Nov.11 06:31 PM Lotus Notes Developer Toolkits All Releases Windows
We have a plugin product for Notes and Sametime that I was asked to distribute using the widget catalog. In order to do so, I must code sign our plugins (jar files).
We purchased a VeriSign code signing certificate for this purpose. I started with a simple 'hello world' plugin. The code signing worked but my Notes 8.5.3 client prompts the user that the plug-in is "signed by an entity that you do not have listed as trusted"
The entity in question is VeriSign.
The user does have the option to trust the certificate authority, but we expected that VeriSign would be trusted by default.
Upon further investigation I found that the certificate authority certificates are in the IBM JRE. I located "C:\notes\jvm\lib\security\cacerts" and an inspection of it's contents shows a few mentions of VeriSign. Therefore I'm wondering cacerts is out of date (ie my certificate is newer than it recognizes) or perhaps I am doing something wrong?