|
IBM has begun its internal deployment of the Notes ID vault, the new Notes ID file recovery and management feature in Lotus Notes and Domino 8.5. This article provides a window on phase 1 of our ID vault deployment during which we deployed the ID vault in one of the domains used by the Lotus ... |
|
This article will cover the following topics for Security Assertion Markup Language (SAML) Notes Federated Login: Notes Federated Login Overview, Notes Federated Login Deployment Overview, Debug Tips. This content was provided by Na Pei of the IBM Notes Development team |
|
If a password reset authority is in an organization different from the organization assigned to your vault, you may need to take additional steps in order for the password reset authority to be able to reset passwords successfully. If not already created, you will need to create crosscertificates ... |
|
Lotus Notes 8.5 supports both Notes client single logon (introduced in an earlier release) and Notes shared login (new in 8.5). Notes single logon is not a supported configuration if you use the ID vault. Therefore, if you use the ID vault, use Notes shared login instead, which is designed to work ... |
|
The Notes ID vault works wherever you are! Beginning in Lotus Domino 8.5.1, you can enable IBM Lotus Notes API programs, such as Lotus iNotes, Lotus Notes Traveler, and RIM Blackberry, to use an ID vault and take advantage of its ID management features. This feature can be enabled in the ID Vault ... |
|
User ID files not being uploaded to the ID vault If you are an administrator and have assigned a new vault policy to existing users, but do not see certain user IDs being uploaded to the vault, check the following: 1. Look through the client and server log.nsf for error messages and potential ... |
|
Content |
|
After its phase 1 deployment of the Notes ID vault, IBM began the second phase by setting up a Notes ID vault in two more production domains. This article describes the ID vault configurations in each domain (referred to as Domains A and B), and the experiences of the domain administrators. Domain ... |
|
Securing your Notes ID vault server Abstract NotesDomino 8.5 introduces a new security feature, the Notes ID vault. The vault provides a great deal of convenience for administrators and end users password resets, ID file provisioning, ID file synchronization, centralized ID file backups, and ... |
|
What should I do if I forget my password? If you attempt to log in but cannot remember your password, click on the "Forgot your password?" twistie on the log in prompt, and follow the instructions provided by your organization to reset your password. What should I do when my password does not work ... |
|
Where can I find logged ID vault messages? ID vault messages are logged as "Security Events" in the log.nsf file. Open the log.nsf on your local client machine (or server machine) and click on "Security Events" on the left side panel to find the security logs. Entries in the client log record ... |
|
How does the ID vault protect ID files that are stored in the vault? The ID Vault stores user ID files as attachments in ID vault documents. Because the IDs are encrypted using a strong encryption algorithm, the ID files are unusable if detached from the ID vault. It is extremely important to ... |
|
How can I tell whose IDs are in the ID vault? An ID vault administrator can open up the ID vault database to see whose IDs are stored in that ID vault. The ID vault is located in the "IBMIDVAULT" folder in the server data directory and holds ID documents, to which encrypted user ID files are ... |
|
For more information about Notes shared login, see the Notes Shared Login FAQ. As an administrator, how should I deploy the ID vault with Notes shared login? Both the ID vault and Notes shared login can be enabled at the same time for users. However, to be even more careful, customers may want to ... |
|
What happens when I change my password? When you change your password on your local machine while online, the ID vault will be updated with your new password. If you then use that new password on any Release 8.5 or later Notes client while online, the client will verify that the new password you ... |
|
What is the ID vault? The Notes® ID vault is an optional, serverbased application that holds protected copies of Notes user IDs. An ID vault allows administrators and users to easily manage Notes user IDs, reducing user downtime and help desk costs. Users are assigned to a vault through policy ... |
|
This article describes how to configure SSLTLS cipher specifications in IBM Domino 9.0.1 FP5 |
|
IBM Notes 9.0.1 FP3 IF3 and IBM Domino 9.0.1 FP3 IF2 provide support for Transport Layer Security version 1.2 |
|
How to configure Domino for HTTP Strict Transport Security |
|
All support for SSLv2 was removed by the IBMDominoTLS1.0Interim Fixes that added support for TLS 1.0 and TLSFALLBACKSCSV to IBM Domino. This includes the SSLv2 handshake messages that were used to enable backwards compatibility with servers that only supported SSLv2. SSLTLS clients that ... |
|
Generating a SHA-2 keyring file |
|
This command line tool can be used to view keyring files, create keyring files, and import certificates of all kinds into keyring files. It uses the Notes C API and can be run against any 8.5.x or 9.x IBM NotesDomino installation, but can only be used with SHA2 certiifcates in 9.x, and can only ... |
|
Generate a SHA-2 certificate using a 3rd party CA with OpenSSL and KYRTool on a Windows workstation |
|
Generating a keyring file with a self-signed SHA-2 cert using OpenSSL and kyrtool |
|
IBM Domino Interim Fixes to support TLS 1.0 which can be used to prevent the POODLE attack |