Hello
Unfortunately, even docs with reader fields are not secure from admin access, since they can get themself FullAccessAdmin Rights…
I do have to make an application, whose data must be completely hidden from admins… and the application has to be accessible through a browser…
how can i achieve that?
Subject: Prevent Access for admins…
There is a couple of steps to take:
Make sure that in the server configuration document, the field “Full Access Administrators” hold only one specified name/id.
The ID-file of this person has to be kept locked away: physically stored in a place not accessible of the admins. If they require the ID to be used, they have to get the file from the Manager and right after they are done, the file must be deleted from the disk.
Make sure that the database uses “Enforce consistent ACL” checked in the ACL.
Make sure that any local replica of the databse are encrypted. (Encryption Settings)
NOW You can use readers fields to prevent admins to see the documents…
Subject: re
I have considered this solution already, but the server is not ours, and on the server are several other applications, where the administrator must have the possibility to get himself FullAccessAdmin access…
Subject: Encypted fields
Encrypt the related fields in the documents in the database. They will still be able to open the database, but won’t be able to read the contents.
Subject: maybe a way but sure not the best…
Hi Frederic, think u don’t work far away, maybe call me 
You would have to change the Domino Directory ACL so only FullAccess Admins have the Modify Server Role. but then u’ve to check if admins still can / can’t modify the DD ACL.
What works, is to enter Encryption-Keys on the Security Tab of the Documents itself t, thing is if u ever lose this Users ID, nobody ever can access that form again.
Subject: hey tibor
Hey Tibor, nice to hear from u
thanx for response…
Encrypted fields would be the best… but i have the problem that i have a Web GUI… and also, i have to work with the Data, so users must bei able to export them, show them in statistics, etc.
and as far as i know, there is no way to display encrypted Field data in views…
even i tried to access encrypted field data by an agent (executed with the correct user), and the agent could not read it…
well there is no 100 % solution… except we are hosting the application on our server… because it is very important, that employee of the same company cannot access the data…