We have recently implemented ID Vault. We have set the “Allow automatic ID downloads” to “NO” and the “Allow ID downloads for” to 1 hour. However, when our Service Desk try to run through first time set up on a client and enter the users server and user name, they get a message that they are unable to download the id? I checked in the Vault configuration and I have the number of ID’s allowed to download set to 1. So why does it not allow the download of the id file at first time setup?
Subject: Questions
What was the error message displayed to the user?Did you attempt the download/setup within the specified one hour time period of authorization?
Did you check the server log.nsf to see what error was logged? What is the error message logged?
Did you specify the number of downloads allowed on a per-user basis by using the Set ID Download Count tool?
Is the user’s ID stored in the vault?
Subject: Answers to Questions
The error message displayed to the user:
When the user enters his password, he gets the following error:“ID in Vault has download count of zero”
When the user was first registered, the first time set was not carried out within an hour, however I assumed that the hour was from when a users password was reset, noty for first time set up?
The server log entry shows:
09/11/2010 10:42:15 ID failed to upload to vault 'O=**'. ‘User Name’ (IP Address ...) made request. Error: ID in vault has download count of zero.
The configuration of the vault allows 1 id download (default)
The users ID is in the vault
Subject: Authorization
Before attempting the download, did you authorize a download through the Domino Administrator Client?
You must first authorize a download before a user may download the ID. You can specify a download count limit on a per-user basis through Domino Administrator tools: under “Tools”, “ID Vaults”, “Set ID Download Count.” The count can also be set at the same time as a password reset.
After you have authorized a download, the download must be attempted within the allowed time period, as specified in the policy.
Subject: Authorisation default
The allow automatic download is set to “No” in the security policy. The vault is set to allow 1 download (is this not the authorisation to download?)I assumed that the “Allow ID Downloads” related to the resetting of a password, hence the days and hours settings. The notes for Allow automatic download states that if this is set to “No” then the number of downloads allowed is specified in the ID Vault (set download count). Are you saying that even if the set download count is set to 1 this is not the authorisation required to be able to set up a new user?
Subject: Where are you setting the download count?
You can specify a number of ID downloads allowed through the “Set ID Download Count” tool in the Domino Administrator, or when resetting a user’s password.The policy is used to indicate that authorization is required, to specify a download time limit, and to specify help text to display when the limit or count has been reached.
Where are you setting the download count?
What version are you running?
If you look in the user’s record in the ID vault, the document indicates the number of downloads allowed.
From the IBM Lotus Domino and Notes Information Center: “Specifying the number of ID downloads allowed for a user”
Subject: Download count
Am I right in saying then, that if I set the allow automatic download to “no” and only allow id download to 1 hour, at first time set up of a client (which could be the next day or week), a user that has password reset authority or an administrator, must select the user from the address book and set the id download count to 1, to be able to complete the first time set up?We are running version 8.5.2