Subject: Shared passwords/Internet Passwords
The shared password feature has been a big improvement and everyone is really happy with it. I have been asked when the shared passwords feature would be expanded to the Internet Passwords. Are there any plans to expand this functionality?
Subject: Have you looked into DA to LDAP (AD) for http passwords? <>
Subject: Could you provide a reference for this?
I’d be interested in this - is there some official documentation/exmaples from IBM?
Subject: It’s in the documentation
http://publib.boulder.ibm.com/infocenter/domhelp/v8r0/index.jsp
Search for “directory assistance”
Subject: Domino LDAP
Domino LDAP IS our primary LDAP. Also used for LDAP authentication in several 3rd party systems. So wee need the Internet passwords (sync’ed). What now?
Subject: Shared login / ID vault and the basic client
Are there any limitations of ID vault and/or shared login when using the basic client?
Subject: Notes ID vault and Notes Shared Login are both fully supported on the basic client<>
Subject: Support for Domino 8.5x ID Vault feature within a Citrix environment
When do you start to support ID Vault within Citrix ? Are there any plans ?http://www-01.ibm.com/support/docview.wss?uid=swg21426389
You still support Citrix at all - then please support also new features on this environment.
What is still not working at the moment when we implement ID Vault right now in Notes 8.5.x? Only a question of support or is there any bug ?
Subject: Quickr Connectors & Shared Login?
This may be off-topic for the OpenMic? . . . Could anyone talk about Shared Login and the Quickr Connectors? Anything to help achieve SSO in this area would be good (or should we just refer to the SPNEGO stuff for the Connectors?).
Thanks.
Subject: ID Vault partly resolved.
we found if when the user logon to Notes, they would get the “Note item not found” error whilst trying to pull down from the vault.we tested with one user who had this error and then decided to reset their password in Notes through the vault. We then got the user to launch notes again, and they were prompted for the password, which we set, and it worked. The id was then pulled from the vault to their local machine.
My question to you is this. How are we supposed to do this for all users in our vault over 1000 people without their intervention. Can we make it seemless?
We use AD, Share Login, Single Signon…
Subject: Some troubleshooting tips
http://www-10.lotus.com/ldd/dominowiki.nsf/dx/id-vault-logging-for-8.5-faq
http://www-10.lotus.com/ldd/dominowiki.nsf/dx/id-vault-miscellaneous-administration-faq
http://www-10.lotus.com/ldd/dominowiki.nsf/dx/Troubleshooting_ID_vault_test_deployments
Subject: DMZ access to HTTP password with shared login
Our Traveler server is in our DMZ and relies on the person doc HTTP password replicated (push)from the Hub to bind an iPhon/iPad user for configuration and authentication. If we have to go to shared login and have to set up DA to LDAP to address the HTTP, what happens if the DMZ does not have access to the HTTP password locally anymore ? - Thanks.
Subject: Migration path for Windows roaming users
We currently run Domino 7.0.x and Notes 7.0.2. Users roam from PC to PC and use Windows Roaming profiles to retain their desktop no matter which machine they may use.
Notes passwords are synchronised with Windows AD passwords using Notes Client Single Logon and HTTP Passwords are subsequently synchronised following an automated password synch when their AD password expires.
I have heard that Notes Shared Logon will not work with roaming users as the ID is tied to the SID.
With this scenario with roaming users what’s the best migration path if we wish to use ID Vault and a single sign-on technology?
Many Thanks
Scott
Subject: SSO and File Server Roaming
Similar to Scott’s earlier post. Our environment is Domino 8.5.1 & Notes 8.5.1. We use ID vault, SSO and Domino File server roaming.
I also ask what is our migration path with Shared login, as I’m being told by IBM support it wont support roaming.
Subject: Just don’t roam the ID file. <>
Subject: Just to clarify…
Roaming the Notes ID file is not supported with Notes Shared Login since that copy of the ID file is locked for that physical workstation. However, you can keep multiple copies of that ID file in sync across multiple systems via the Notes ID vault, even if some or all of those IDs are locked to their specific workstation via NSL – Notes Shared Login and the Notes ID vault were designed to work correctly together. You can also eliminate the http passwords from your Domino directory and use DA to an LDAP server (such as AD) to use your AD password for web authentication.
You can roam the rest of the desktop using the new file server roaming feature – just don’t roam the ID files!
Subject: ID Vault, Notes Shared Logon, Roaming
Domino version 8.5.1 FP4 client and servers.Mail servers AIX 64bit, Admin server Win 2003 SP3 64bit.
we have had issues trying to get users IDs to pull down from the vault.
when a user logs on to a workstation for the first time, they are prompted for their username and server name. They input these details and then are prompted for their user id. When we tested this process in our pilot, the user was only prompted for the username and server and the ID automatically downloaded from the vault.
We are using a scribable setup as per Lotus recommendation utilizing the setup.txt file with the parameters to poplulate the correct information.
We have implemeted alot of the suggestions that were given by Lotus through the PMRs we raised. But nothing is working. Do you have any further suggestions regarding why a user is not being able to pull down their ID. This is very important as we are also roaming our users.
Currently our environment has been setup as follows:
Shared Notes Logon is enabled.
Scriptable setup is being used. setup.txt file with the following text:
Username= Sharon bourne
Domino.Name=BWAMAIL02
Domino.Address=BWAMAIL02.********.com
Domino.Port=TCPIP
Domino.Server=1
AdditionalServices=-1
Replication.Schedule=1
A clean notes.ini has been stored under the “All Users” profile with the following lines:
[Notes]
ConfigFile=\NOTESCONFIG.RTDOMAU.LOCAL\USERCONFIG%USERNAME%\CONFIG.TXT
KitType=1
SharedDataDirectory=C:\Documents and Settings\All Users\Application Data\Lotus\Notes\Data\Shared
InstallType=6
InstallMode=1
NotesProgram=C:\Program Files\IBM\Lotus\Notes\
we have been hearing conflicting information regarding using Shared Notes Logon and roaming. Can you please clarify if there is indeed an issue with using Shared Notes logon and roaming in Domino.
Can you please clarify the complete workflow connection between ID vault, roaming and shared notes logon.
Subject: NSL + Vault + Roaming
NSL, ID Vault, and file server roaming work together as long as you do not roam user IDs. NSL is not supported with roaming IDs.
There appear to be a lot of moving parts for your pilot group, and we’d want to take a look at that via a PMR. Do you have an open PMR for this issue?
Subject: Roaming is sort of working…
we have tested in our production environment using domino roaming. we were concerned as users were syncronizing with the ID vault but when they tried to use the roaming capability, they were prompted for the location of their id. Obviously, its in the vault, but yet it wasnt being pulled down.We renamed the users ID on their workstation and then reset password. We then had the user launch notes and all they had to input was their new password. Their ID was pulled down from the vault successfully. Once they were setup on their machine. We then had them exit notes and got them to log onto another workstation. The user was roamed prior to all this happening above. The succesfully logged on and could open notes with their roamed files intact.
My concern is, we have over 3000 user yet to migrate. We are only using the “Organisational” certificate within the vault. We have many OU certificates. do we need to add all OU certificates to the vault as well so we can bypass having to reset passwords for the users to resync to the vault and roam?
Subject: Where did the Chat transcript save to?
Thanks for a good session.At the end I saved the Chat transcript, and I guess that it saves to a file, but it did not say.
I am running Ubuntu Linux 10.10 with Firefox 3.6.10 - does anyone know where it would have saved the file?
Best regards
René