"This note should be encrypted" on saving server configuration document

HCL Domino Domino Forum
,
1

Since I added the credentials for my smtp relay host to my server configuration document, I get this message whenever I save this document

Community-Pasted-Attachment-1654380089303.png412×159 3.46 KB

Is there someone who can help me decipher this message? I'm lost on what they would want me to do here. I've never read anything on encrypting your server configuration document. Did I miss something?

2

Hello Martijn de Jong,

The pop up message means when you have SMTP authentication credential entered in the configuration document for the relay host it will be shown to every user who opens the configuration document and it may be a security concern. Hence, it is prompting to encrypt the information with the administrator ID so that it can't be seen to other users except the administrator.

Example as shown below.

1. Configuration document without secret keys encryption.

Administrator ID opening the configuration document shows the authentication information as below.

Community-Pasted-Attachment-1654424446655.png1071×676 189 KB

Normal user ID (non administrator) opening the configuration document also shows the authentication information as below.

Community-Pasted-Attachment-1654424826401.png1132×732 200 KB

To avoid this you need to generate document encryption key with the administrator ID so that these fields will only be shown to administrator ID.

1. Configuration document encryption with secret keys.

Generate document Encryption Key by following the below steps.

Reference : https://help.hcl-software.com/notes/9.0.1/sec_encryp_doc_t.html

Procedure

  1. Click File > Security > User Security (Macintosh OS X users: Notes > Security > User Security).
  2. Click Notes Data > Documents.
  3. Click the "New Secret Key" button.
  4. Enter a name for the secret encryption key in the "Secret key name" field in the "New Secret Encryption Key" dialog box.
  5. Optional: Enter a note about the secret encryption key and what it is being used for in the Comment field in the "New Secret Encryption Key" dialog box.
  6. Click OK.

Community-Pasted-Attachment-1654425310482.png1362×697 144 KB

To specify a secret encryption key for the document

  1. Open the configuration document or be in the Configuration view and select the SMTP auth enabled configuration document.
  2. Click File > Document Properties.
  3. Click the Security tab.
  4. Click one or more secret encryption keys that you created. If you want the document to be readable by people who do not have the secret encryption key, list those people in the "Public Encryption key" field under "Encryption Keys."
  5. Save the document.

Community-Pasted-Attachment-1654425617248.png1352×677 131 KB

Result: Administrator will no longer see the message while saving the configuration and also normal user will not be able to see the authentication information as shown below.

Community-Pasted-Attachment-1654425756701.png1301×736 204 KB

Thank you and I hope this helps.

With Kind Regards

Shrikant J