If access to the NSL enabled ID file is necessary, one is presented with a dialog “Enter your windows password” and the password for the current user must be entered.
Why is this necessary when I am already logged in with this very OS user account?
May it be possible to suppress this dialog as long as the current user credentials are valid to decrypt the NSL enabled ID file?
Subject: For security reasons, for limited set of actions
If access to the NSL enabled ID file is necessary, one is presented with a dialog “Enter your windows password” and the password for the current user must be entered. You should only be prompted when accessing User Security and to re-authenticate the user if they use Ctrl-F5 to log off/have session timeout configured in User Security. If you are being prompted under other circumstances, please let us know.
Why is this necessary when I am already logged in with this very OS user account? For security reasons. For example, if the user walks away while Windows session is active, an attacker could walk up and make a password protected copy of the ID file. Similarly, if the user chooses to clear/timeout their Notes sessions with the server, they should be prompted to re-authenticate.
May it be possible to suppress this dialog as long as the current user credentials are valid to decrypt the NSL enabled ID file? For initial login and for most use, yes. But not for accessing user security or to re-authenticate after timing out the sessions.