{"id":6571,"date":"2011-11-14T11:48:08","date_gmt":"2011-11-14T09:48:08","guid":{"rendered":"http:\/\/nolabnoparty.com\/?p=6571"},"modified":"2013-06-04T11:44:35","modified_gmt":"2013-06-04T09:44:35","slug":"setup-id-vault-in-lotus-domino-8-5-3","status":"publish","type":"post","link":"https:\/\/nolabnoparty.com\/en\/setup-id-vault-in-lotus-domino-8-5-3\/","title":{"rendered":"Setup ID Vault in Lotus Domino 8.5.3"},"content":{"rendered":"

\"idvault1\"<\/p>\n

Lotus Domino<\/em> ID Vault is a\u00a0users ID Files <\/strong>repository<\/strong> configured in the system that makes ID users and passwords administration\u00a0easier.<\/p>\n

Configuration changes are saved directly in the repository<\/strong> keeping the IDs copies always up-to-date.<\/p>\n

Enabling the ID Vault configuration is a quite simple task but it requires a good analysis with the support of a testing period prior production.<\/p>\n

<\/strong><\/p>\n

 <\/p>\n

Procedure<\/h2>\n

<\/strong>Open\u00a0Domino Administrator<\/strong>, select menu\u00a0Configuration Tab > Tools > ID Vaults<\/strong>\u00a0and click\u00a0Create<\/strong>.<\/p>\n

\"idvault3\"<\/p>\n

The Wizard starts by showing a short\u00a0description<\/strong>\u00a0of the ID vault functionality. Click\u00a0Next<\/strong>\u00a0to continue.<\/p>\n

\"idvault4\"<\/p>\n

Type the name<\/strong> of the <\/strong>ID Vault you are creating in the field Notes ID vault name<\/strong>\u00a0then click Next<\/strong>.<\/p>\n

\"idvault5\"<\/p>\n

Type\u00a0password and path<\/strong> of the\u00a0Vault ID <\/em>file. As done during Lotus Domino installation for the Certifier, Server and Administrator IDs, copy the Vault<\/em> ID file and keep it in a safe place to avoid problems if the ID file is deleted from the server. Click\u00a0Next<\/strong> to continue.<\/p>\n

\"idvault6\"<\/p>\n

Specify the server<\/strong>\u00a0where the ID Vault has to be created then click\u00a0Next<\/strong>.<\/p>\n

\"idvault7\"<\/p>\n

Select the ID vault administrators<\/strong>\u00a0through the button\u00a0Add or Remove<\/strong>. Click\u00a0Next<\/strong>\u00a0to continue.<\/p>\n

\"idvault8\"<\/p>\n

Click\u00a0Add or Remove<\/strong>\u00a0button, select\u00a0Organizations<\/strong>\u00a0will be part of the Vault<\/em> and click\u00a0Add<\/strong>.<\/p>\n

\"idvault9\"<\/p>\n

Select\u00a0Organizations<\/em> that trust the Vault<\/strong>\u00a0and where Notes ID vault users will be stored.<\/p>\n

\"idvault10\"<\/p>\n

Specify the\u00a0Password Reset Authority by organization\u00a0<\/strong>selecting the requested accounts by organization then click the Add\u00a0<\/strong>button. It is also\u00a0possible\u00a0to assign the right to reset the agent password<\/strong> selecting the user previously added and enabling the\u00a0Password reset agent authority<\/strong>\u00a0option. Click\u00a0Next<\/strong>\u00a0to continue.<\/p>\n

\"idvault11\"<\/p>\n

Select\u00a0Create a new policy assigned to an organization<\/strong>\u00a0option to create automatically the\u00a0policy that will enable the Vault<\/strong>\u00a0in the\u00a0Trusted Organizations<\/em>. Click\u00a0Next<\/strong>.<\/p>\n

\"idvault12\"<\/p>\n

Select the Organizations<\/em>\u00a0to assign the policy<\/strong>.<\/p>\n

\"idvault13\"<\/p>\n

Click the Add or Remove<\/strong>\u00a0button and select the\u00a0Organizations<\/em>\u00a0to which\u00a0the policy will be assigned.<\/strong><\/p>\n

\"idvault14\"<\/p>\n

Type the text<\/strong>\u00a0to help the user when the password is forgotten.<\/p>\n

\"idvault15\"<\/p>\n

The next window shows the configuration to be applied<\/strong> on creation.\u00a0Click\u00a0Create Vault<\/strong> to go ahead with the installation.<\/p>\n

\"idvault16\"<\/p>\n

The creation progress<\/strong>\u00a0window is shown during the process.<\/p>\n

\"idvault17\"<\/p>\n

During the installation you need to enter the Certifier credentials<\/strong>\u00a0for the Organization<\/em> selected to create the trust certificate. Click\u00a0Browse<\/strong>\u00a0to set the cert.id<\/em> file location.<\/p>\n

\"idvault18\"<\/p>\n

Select the cert.id<\/strong>\u00a0file and click Open<\/strong>.<\/p>\n

\"idvault19\"<\/p>\n

Type the\u00a0Certifier password<\/strong>\u00a0and click\u00a0OK<\/strong>.<\/p>\n

\"idvault20\"<\/p>\n

Installation continues creating the remaining components.<\/p>\n

\"idvault21\"<\/p>\n

When the installation is complete, a notification window<\/strong>\u00a0appears showing the run tasks and warnings.\u00a0It is strongly suggested to copy this information and keep it as documentation.\u00a0Click\u00a0Done<\/strong>\u00a0to quit.<\/p>\n

\"idvault22\"<\/p>\n

You can access the Vault database<\/strong> using the\u00a0<\/span>Domino Administrator<\/em>\u00a0tool and selecting <\/span>Files Tab > IBM_ID_VAULT > Vault_name<\/strong>\u00a0menu. In the\u00a0database\u00a0you can check which users have been already stored<\/strong> in the Vault.<\/span><\/span><\/p>\n

<\/strong>\"idvault23\"<\/span><\/p>\n

The Vault administration<\/strong> is performed\u00a0using the\u00a0<\/span>Domino Administrator<\/em>\u00a0tool through\u00a0<\/span>Configuration Tab > Tools > ID Vaults > Manage<\/strong>\u00a0menu.<\/span><\/span><\/p>\n

 <\/p>\n

Register users in the Vault<\/h2>\n

<\/strong>During the\u00a0creation of a new account<\/strong>\u00a0in the ID Info<\/strong>\u00a0panel, the default user ID location is set as In Notes ID Vault -\/<\/strong>vault_name<\/em>.<\/p>\n

\"idvault24\"<\/p>\n

For existing accounts, when the user login to Lotus Notes, the\u00a0previously\u00a0configured policy<\/strong> will take care of copying the user ID into the Vault.<\/p>\n

\"idvault25\"<\/span><\/p>\n

 <\/p>\n

Vault configuration for iNotes<\/h2>\n

<\/strong>In order to synchronize<\/strong> the Lotus Notes and iNotes (WebMail) password, in the ID Vault policy you have to enable Notes-based programs<\/strong> to use the ID Vault.<\/p>\n

Allow Notes-based programs to use the Notes ID Vault: YES<\/pre>\n
\"idvault26\"<\/p>\n
Access iNotes with the browser<\/strong>\u00a0and select\u00a0Preferences > Security<\/strong>\u00a0then click the\u00a0Sync with Vault<\/strong>\u00a0button.<\/p>\n
\"idvault27\"<\/p>\n
 <\/p>\n
Reset client password<\/h2>\n
<\/strong>To reset the user's password you need to select the requested user <\/strong>and in the\u00a0Tools > ID Vaults<\/strong>\u00a0menu then click the\u00a0Reset Password<\/strong>\u00a0option. Set the new password then click\u00a0Reset Password<\/strong>\u00a0button.<\/p>\n
\"idvault28\"<\/p>\n
The password reset is confirmed<\/strong>\u00a0with a notification window.<\/p>\n
\"idvault29\"<\/p>\n
The system is now fully working and the management of\u00a0users IDs is enabled<\/strong>. Once configuration has been tested, the Vault can be enabled in production environment without any service interruption<\/strong>.<\/p>\n
\"\"<\/p>\n","protected":false},"excerpt":{"rendered":"
Lotus Domino ID Vault is a\u00a0users ID Files repository configured in the system that makes ID users and passwords administration\u00a0easier. Configuration changes are saved directly in the repository keeping the IDs copies always up-to-date. Enabling the ID Vault configuration is a quite simple task but it requires a good analysis with the support of a testing period prior production.<\/p>\n","protected":false},"author":3,"featured_media":4061,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"rop_custom_images_group":[],"rop_custom_messages_group":[],"rop_publish_now":"initial","rop_publish_now_accounts":{"linkedin_93tdZWzMZc_93tdZWzMZc":"","facebook_2879994398731222_17841400390232720":"","twitter_113568041_113568041":"","mastodon_115463926174894442_115463926174894442":""},"rop_publish_now_history":[],"rop_publish_now_status":"pending","footnotes":""},"categories":[539,534],"tags":[600,598,635],"class_list":["post-6571","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-lotus-domino-en","category-messaging-en","tag-domino-en","tag-id-vault-en","tag-lotus-notes-en","has_thumb"],"_links":{"self":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/posts\/6571","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/comments?post=6571"}],"version-history":[{"count":0,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/posts\/6571\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/media\/4061"}],"wp:attachment":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/media?parent=6571"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/categories?post=6571"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/tags?post=6571"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}