Before password synchronization can take place, all current Notes account ID files with their passwords need to be obtained. The repository for these account IDs and passwords is the existing Archive database. Keeping this repository current allows for ID and password recovery. If you lose your account ID, the Administrator can retrieve the current account ID and password from the Archive database and send them to you.
To obtain the current account IDs and passwords, the archive database on the Domino server needs to be designated as “Mail-in” database and the Send ID to Archive DB hidden agent needs to be copied to all user mailfiles by the Administrator. The agent can be copied in one of the following ways:
This agent gets the user's Notes account ID specified by the “KeyFilename” entry in their notes.ini file on the Domino Client, prompts the user to enter his or her password and then mails these items to the Archive database. The Archive DB must be configured as a Mail-in Database in the Domino endpoint using the Mail-in name “Archive Database”.
Once the agent is present in the user mailfiles, a mail message is sent notifying them that their account ID and password need to be sent to the Archive database. This message contains a button that activates the Send ID to Archive DB hidden agent which retrieves the ID file and mails both ID and password to the Archive database.
You must sign the agents with a signature that is valid in your organization in order for the new agents to run successfully. To do this, edit and save each agent in the Domino Designer client.
If a database is designed to receive mail, you must create a Mail-In Database document in the Domino Directory. This document must exist in the Domino Directory of every server that stores a replica of the database. The database cannot receive mail until you create this document.
To create a Mail-In Database Document
Mail-in name: “Archive Database”
Domain: <Your domain name>
Server: <Your server>
File name: regarc.nsf
Another hidden agent called Update ID File has been added to the Archive database. This agent gets the current Archive documents for the user whose ID has been received and replaces the ID and password values on the document with those received in the mailed-in document. If a previous Archive document exists for that user, a new document containing the new ID and password is linked to the Archived document.
The RegXArchive encryption key must also be available in the current User.ID of the Administrator as well as the Server.ID of the Registration server to let the mail-triggered background agent in the Archive database run successfully. Alternatively, the agent can be run manually in the foreground by the Administrator if the encryption key cannot be added to the Server.ID.
You must have at least Designer access with Create LotusScript/Java agent to the user mailfiles in order to copy the hidden agent.
Add the following parameter to the NOTES.INI file on the Registration server:
Mgr_DisableMailLookup = 1
This parameter lets the mail-triggered agent in the Archive database to run even if the server is not the mail server for the Administrator.
A third, optional agent, Remove ID Agent from User Mailfiles can be added to the Archive database. This agent can be run manually by the administrator to remove the hidden agent from user mailfiles after the ID repository has been created.
|
Copyright © 2013 CA.
All rights reserved.
|
|