Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
To change the default NRPC port number, use the NOTES.INI setting TCPIPportname_TCPIPAddress and
enter a value available on the system that runs the Domino server. TCP ports with numbers less than 5000
are reserved for application vendors. You may use any number from 1024 through 5000, as long as you
don't install a new application that requires that number.
When we installed the First Domino server the following are created atomically
• Cert.id--This is Organization Certifier & save in the Domino Directory
• Server.id
• Admin.id
• A Mail Database is created for the Administrator
• A personal document is created for the Administrator in domino directory.
• A server Document is created.
• A Domino Directory is created for server.
• A configuration Document is created for Domino Directory
• Log.nsf
• Certlog.nsf
• Admin4.nsf
These above 3 databases are required to run AdminP
Partition Server:
In partition server Environment, all Partitions share the same domino program directory and each partition
has its own Domino data directory & notes.ini
By default, access to the Administration Requests database (ADMIN4.NSF) is set to "Author" for hosted
organization administrators and for -Default-. With this level of access, anyone with a Notes ID at a hosted
organization can open ADMIN4.NSF with a Notes client and view user activity in the database. This is a
security risk.
To prevent users at a hosted organization site from accessing ADMIN4.NSF, do the following:
1. As the service provider administrator, open ADMIN4.NSF and select File - Database - Properties.
2. Select the i Tab and click User Detail.
3. In the User Activity interface, select the check box "Activity is confidential."
4. Click OK. Click X to close out of Properties.
• Every Domino server has a log file (LOG.NSF) that reports all server activity and provides detailed
information about databases and users on the server. The log file is created automatically when you
start a server for the first time.
• User Name
• Password
• Certifier Information
A policy is a document that identifies a collection of individual policy settings documents. Each
of these policy settings documents defines a set of defaults that apply to the users and groups
to which the policy is assigned.
Registration If a policy including registration policy settings is in place before you register Notes users,
these settings set default user registration values including user password, Internet address format, roaming
user designation, and mail.
Setup If a policy including setup policy settings is in place before you set up a new Notes client, these
settings are used during the initial Notes client setup to populate the user's Location document. Setup
settings include Internet browser and proxy settings, applet security settings, and desktop and user
preferences.
Desktop Use desktop policy settings control and update the user's desktop environment or to reinforce
setup policy settings. For example, if a change is made to any of the policy settings, the next time users
authenticate with their home server, the desktop policy settings restore the default settings or distribute new
settings specified in the desktop policy settings document.
Mail archiving Use archive policy settings to control mail archiving. Archive settings control where
archiving is performed and specify archive criteria.
Security Use security settings to set up administration ECLs and define password-management options,
including the synchronization of Internet and Notes passwords.
“If user is Already register, then we can apply only Archive Policy & Security Policy & Setup Policy”
“Policy are Introduced in the Domino R6 Version”
Groups:
Groups can be used for three purposes
• Mailing
• Server Security
• Database Security
Groups are 5 Types in Lotus Domino
There are two major reasons to create a replica for a database in a cluster -- to provide constant availability
of the data and to distribute the workload between multiple servers.
If you have only two servers in your cluster, you can set them up in one of two ways: You can use one of the
servers as the primary server for user access and use the second server as a backup and failover server, or
you can equally divide the workload between the two servers and have them fail over to each other. Dividing
the workload typically ensures better performance when both servers are running. When one server is not
available, performance is the same in both scenarios because one server must process the entire workload
of both servers.
The following figure shows a cluster with two servers with the workload divided between the servers.
We need to setup another Domino server on the same cluster in order for failover to function. Select another
Domino server and step through the same steps as shown above. The only exception, is when prompted for
the name of the cluster DO NOT select *Create New Cluster, select the down arrow key and select the
cluster which was created in the steps above. (MailCluster1)
The Domino server will add a couple of services to both of the domino servers.
A cluster's ability to redirect requests from one server to another is called failover. When a user tries to
access a database on a server that is unavailable or in heavy use, Domino directs the user to a replica of
the database on another server in the cluster.
Fault recovery is the ability of a Domino server to clean up and restart itself after a failure. Fault recovery
works well in a Domino cluster. If there is no Domino server to fail over to, fault recovery still ensures that
users will have constant access to their data. Even if users fail over to another cluster server, fault recovery
increases availability because the failed server becomes available again. In addition, depending on the
workload balancing parameters you've set, some users will fail back to the original server when they open
new databases.
If you are using an operating system cluster in conjunction with a Domino cluster, the decision about
whether or not to use fault recovery depends on how you configured the operating system cluster. If you
configured the operating system cluster to fail over on a hardware failure only, fault recovery works well.
Fault recovery restarts Domino on its current server, and no operating system fail over occurs.
If you configured your operating system cluster to fail over on both hardware and software failures, you don't
need fault recovery because the operating system cluster will restart Domino on another server in the
cluster. In fact, you should disable fault recovery so you won't have Domino restarting itself while the
operating system cluster is also restarting it. This can lead to problems.
By default, fault recovery is disabled. You enable it in the Server document.
1. From the Domino Administrator or the Web Administrator, click the Configuration tab.
2. In the Task pane, expand Server, and click All Server Documents.
3. In the Results pane, select the Server document you want, click Edit Server, and then click the Basics
tab.
Creating mail database replicas in a cluster during user registration from the Domino Administrator
1. Click the People & Groups tab.
2. In the Tools pane, expand People, and then click Register.
3. In the "Choose a Certifier" dialog box, choose a certifier and click OK.
4. In the Register Person -- New Entry dialog box, select Advanced, and then click the Mail tab.
5. In the Mail system field, choose Lotus Notes.
6. Click Mail Server, and choose a cluster server as the Mail server.
7. Click Mail File Replicas.
8. Select "Create mail database replica(s)." A list is displayed of servers in the same cluster as the Mail
server.
9. Do one of the following:
To create a replica of the mail database on all of the cluster servers, skip this step.
To change the list of servers to receive a replica, use the Remove Server(s) button and the Add
Server(s) button.
10. (Optional) Select "Create mail replica(s) in background."
11. Click OK, and then complete any other fields you want on the Mail tab.
12. (Optional) If you want to set up the user for roaming in a cluster, follow the procedure in the topic
"Setting up roaming in a cluster."
13. Complete the rest of the user registration the way you normally would.
There are 7 types of Access levels are their in the ACL to access the Database.
• Manager
• Designer
• Editor
• Author
• Reader
• Depositor
• No Access
Managerwho can create the Database is Manager to that database.
Only manager can encrypt the Database.
Only Manger can Change the ACL setting.
Only Manager can compact the Database.
Only Manager can delete the Database
DesignerDesigner can Access the all Design Elements like Views, form...etc.
Designer can create FT Index to the database (Full text Index).
Designer can delete the Document if Manager give the permission.
Editor By Default Editor can Create, Read & Modified the Document.
Editor can delete the Document if manager give the permission.
AuthorAuthor can Read the document if manager gives the permission.
Author can delete the Document, if author is owner of that document.
Author can always read Documents.
ReadersBy default readers can read the document.
Readers can’t Create & can’t Update the Documents.
DepositorDepositor can create the Document, but they can’t read the Document.
Mail Administration:
• By Default the Message Tracking is disabling in the Configuration document. Administrator has to
enable the Message Tracking.
• Mail Tracker Collector Task (MTC) Reads Special Mail tracker Log files (MTC files) produced by the
Router and copied then in to Mail Tracker Store Database called MTSTORE.NSF
This procedure creates single sign-on cookies for your server that can be used successfully on other
participating servers.
To enable single sign-on and basic authentication for a Web Site
Use this procedure to enable single sign-on for Domino 6 servers configured with Web Site documents.
1. In the Domino Administrator, click Configuration - Web - Internet Sites.
2. Open the Web Site document for which you want to enable single sign-on.
3. Click Domino Web Engine.
4. In Session authentication, select "Multiple Servers (SSO)."
5. In the Web SSO Configuration field, select the Web SSO Configuration for this Web Site from the
drop-down list.
6. Click Security. For both TCP and SSL authentication, enable Name & Password.
7. Save and close the Web Site document.
8. At the server console, start the HTTP process by typing:
load HTTP
If the HTTP process is already running, type:
tell HTTP restart
Note If something is wrong with the configuration, the browser will receive an Error 500 message stating
that single sign-on is not configured.
To enable single sign-on and basic authentication in the Server document
Use this procedure to enable single sign-on for Domino Release 5.0x servers, or for Domino 6 servers not
configured with Web Site documents.
1. Open the Server document.
2. Click Ports - Internet Ports - Web, and enable Name-and-password authentication for the Web
(HTTP/HTTPS) port.
3. Click Internet Protocols - Domino Web Engine, and select Multiple Servers (SSO) in the Session
authentication field.
Note The "Idle session timeout" and "Maximum active sessions" fields will be disabled.
Lotus Domino 7.0 has been enhanced to include the following administration Tools
Domino Domain Monitoring (DDM) provides a single location in the Domino Administrator client that you can
use to view the status of multiple servers across one or more domains. To do this, DDM uses configurable
probes to gather information across multiple servers. These probes check for issues involving the Directory,
SMTP, routing, replication, ACL, security, and agents. DDM then consolidates and reports that information
on specially-designated collection servers in a Notes output database called the Domino Domain Monitor
(DDM.NSF).
Lotus Domino 7.0 includes a number of enhancements to Lotus Notes Smart Upgrade. For example, Smart
Upgrade now detaches kits in the background to prevent lost time due to a non-working client. Smart
Upgrade also provides failover from a shared (network) upgrade kit to another server's attached kit. In
addition:
• Administrators are notified via a mail-in database of the Smart Upgrade status (success, failed, or
delayed) by user/machine.
• In clustered environments, Smart Upgrade can switch to another member of the cluster if the first
server is unavailable.
• Provisioning is available for the Smart Upgrade Tracking database.
• Smart Upgrade governor limits the number of downloads from a single server to avoid excessive
server load.
You can run the Domino 7.0 Web Administration client from a Mozilla Web browser on a Linux system,
enabling an end-to-end Linux deployment of Lotus Domino and Domino Web Access with no need for
Windows in the environment.
Lotus Domino 7.0 now features private blacklist/whitelist filters for SMTP connections and DNS whitelist
filters for SMTP connections. Most spam filtering involves blacklists in which email from addresses on the list
is rejected or filtered.
Create a TCP server event generator to verify the availability of the services on Internet ports on one or
more servers. A TCP server event generator uses the ISpy task to send a probe to test whether the
server is responding on a port
By default, the ISpy task monitors all enabled Internet ports (TCP services) on the server on which it is
running.
You must start the ISpy task before you can create server and mail routing event generators. The ISpy task
does not start automatically. Use any of these methods to start and stop the ISpy task. Because the ISpy
task is case-sensitive, you must enter it exactly as shown in this table.
To do this Perform this task
Start the ISpy task automatically Edit the ServerTasks setting in the
when the server starts NOTES.INI file to include runjava ISpy.
Start the ISpy task manually Enter the command load runjava ISpy at
the console.
Stop the ISpy task Enter either the command tell runjava ISpy
unload or tell runjava quit at the console.
Mail journaling
Mail journaling enables administrators to capture a copy of specified messages that the Router processes by
the Domino system. Journaling can capture all messages handled by the Router or only messages that
meet specific defined criteria. When mail journaling is enabled, Domino examines messages as they pass
Domino mail journaling differs from message archiving. Journaling works dynamically, making a copy of
each message as it passes through MAIL.BOX to its destination and placing the copy in the Mail Journaling
database. A copy of the message is retained, even if the recipient, or an agent acting on the recipient's mail
file, deletes it immediately upon delivery. Archiving is used to reduce the size of an active mail file database
by deleting messages from one location and moving them to an offline database, usually in another location,
for long-term storage. Archiving acts on messages that have already been delivered. Journaling is
performed automatically by the server; while archiving is a manual operation, performed by end users on
their own mail files. End users can search for and retrieve messages from a mail file archive, but only an
authorized administrator can examine a Mail Journaling database.
By default, mail journaling is not enabled. You enable journaling from the Configuration Settings document.
To set up the Mail Journaling database, you specify where to store journaled messages and then set options
for managing the security and size of the database.
After you enable journaling, Domino automatically creates the Mail Journaling database in the specified
location.
To set up the Mail Journaling database
1. Make sure you already have a Configuration Settings document for the server(s) to be configured.
2. From the Domino Administrator, click the Configuration tab and expand the Messaging section.
3. Click Configurations.
4. Select the Configuration Settings document for the mail server or servers where you want to journal
mail, and click Edit Configuration.
5. Click the Router/SMTP - Advanced - Journaling tab.
6. Complete the following fields, and then click Save & Close:
Specifying messages to journal
After you enable journaling, set mail rules on the Configuration Settings document to specify which
messages to journal.
If you specify All documents and a message is returned as undeliverable, Domino journals the delivery
failure report as well as the original message.
When Domino journals a message, it sets a journal flag on the message before transferring it to the next
server on the route. This ensures that servers later in the routing path do not journal the message again.
When the Router on the destination mail server delivers the message to the user's mail file it removes the
journal flag so to that the user remains unaware that the message was been journaled.
On servers running the ISpy task, this task sends mail probes in the form of trace messages to test mail
connectivity approximately every five minutes. Under normal use, the ISpy task automatically deletes
these probes from the ISpy mail-in database and the only trace of them are entries in the Routing events
view of the server log file and on the server console. However, if you enable a journaling rule on these
servers and specify the condition "All documents," the Mail Journaling database will capture each trace
message that the ISpy task sends. To prevent the Mail Journaling database from filling up with these
entries, configure a rule exception for messages where the sender includes "ISpy."
1)If any problems in the lotus notes client issues need to check , whether user ID file is working or not in the
, please open the address book in the workspace , if the address book is opening without any problem, then
problem with local lotus notes not in the sever .
2) For the Archive the mails user need minimum editor access required ,if user already having the editor
access but still it archive setting disabled, then there is a problem in the location document , need to filed
the proper details.
3) IF you want to rename the user ID file , then go to certify then you can change the rename of the ID file