A LotusScript NotesHTTPRequest change in Domino 14.5 you should know
Daniel Nashed – 26 August 2025 21:08:49
There is a change in Domino 14.5, which is on by default.In general this is a great move into the right direction. I would wish we would get this for clients too next.
But this would mean we need to push root certs to clients and they might need to have cross certs because users can update their local names.nsf documents.
The CA certs in Domino directory are the same by default. But if you have you own root certificates, you need to import it into the server's Domino directory.
https://help.hcl-software.com/domino/14.5.0/admin/wn_145_security_features.html#wn_145_security_features__section_dbj_sn4_cfc
Starting with Domino 14.5 server, the NotesHTTPRequest LotusScript class methods will, by default, load Trusted Roots from the Domino Directory when running on a Domino server. Previously, trusted root certificates were loaded from the file "cacerts.pem" in the Domino data directory. This new change doesn't impact NotesHTTPRequest LotusScript class behavior on the Notes client.
If you prefer to maintain the previous behavior and continue using "cacerts.pem", you can do so by setting the server-side Notes.ini parameter: NotesHTTPRequest_Use_CACerts=1
- Comments [0]
![[HCL Domino]](../lotus-domino.gif){kind=small}
![[Domino on Linux]](../domino-linux.gif){kind=small}
![[Nash!Com]](../nashcom.gif){kind=small}
![[Daniel Nashed]](../daniel-nsh.gif){kind=small}