Up front we are not having any problems recertifying users, I just need clarification on this so I can be reassured that there is nothing wrong with our server setup.
If I recertify a user when they send me an email with their ID attached, it works fine. If I wait a few days after the recertification has taken place and
go into Domino Admin
view that user’s person document on the server
“Examine” their Notes Certificates
. . .it still shows the old dates on the certificates. Why???
Also, going into
Domino Admin
Config tab
Select the Certificates/Certificates Expired view
. . . numerous users are showing up under the “Expired” section, which is very misleading because they are not really expired. My boss, who rarely goes into the Admin client, nearly had a heartache when she saw all the user’s under the “Expired” heading.
If I re-certify a user using the re-certify option on the “People & Groups” tab the dates on the certificates in the user’s person document do get updated.
Do we have an issue with our server setup/client setup? Or is this the way everything is supposed to work?
Subject: Recertifying a user thru Domino Admin verse Recertifying an Id via an email from the user
When you recertify your user, in the dialog box there is a server which you must select. This is where the person document will be updated.
So what I suppose is that you don’t select the same server in this dialog box as the one where you look at the view Certificates/Certificates expired.
Your users are still able to access the server(s) because they receive the new certificate => the certificate itself is not expired but the person document on the server is not updated with the new informations.
Renaud
Subject: RE: Recertifying a user thru Domino Admin verse Recertifying an Id via an email from the user
When re-certifying a user via an email received from the user, the default server on the certification pop-up window is the same server I am checking the “Expired Certs” view on.
What/who is updating the server information? The user, when they apply the new certificate via the return email? Or the administrator at the time they re-certify the ID attached to the email? If it is the user, do they need a certain authority level to update the server? If it is the administrator, do they need to be listed in either the “Owner” field or the “Administrator” field on the Admin Tab of the person document?
All our person documents are owned, at least, by the user who the person doc is for. We have a group called Administrators which IS NOT listed in every person document as the owner or administrator. The Administrators group is in some of the person documents, just not all of them. We did not start adding this group to the “administrators” field until after a couple years of having Notes 5. We’ve been on 6.5.5 for a while now and are soon moving to 8.
I just re-certified myself thru email and had no problem getting the server person document updated with the date change. But I am an Administrator and I am in the Administrators group, and I own my own person document.