Tips to help you configure Domino with IIS

hcl-bot · April 1, 2003, 3:01am

After reading all the problems people have been having with Domino and IIS I thought I would share some tips on setting up and configuring your server.

I’m happy to say that I run several websites on a single partitioned Domino server with IIS as the frontend to it all. Interestingly enough this is all run with only one external ip address. My configuration is such that all incoming traffic is initially handled by IIS and then directed to the appropriate Domino partition as per my configuration. Running HTTP, SMTP and POP3 seperately on each partition is no problem at all.

So here we go. The tips shown below may not work for all configurations but works best for me so I hope they provide you with some good ideas. While these were written for multiple partitions they should equally apply to a single Domino server as well.

Use multiple network cards

I have two network cards. One network card has a single ip address which I have configured IIS to bind itself to. The other network card has been assigned 3 ip addresses. Each of my 3 Domino server paritions uses one of these ip address. If you want to use the same port numbers you will need multiple ip addresses.

DNS names of websites

Each of my 3 registered internet domain names have been configured on the internet to point to my single external ip address.

Hosts File on server

On my server I have configured each of my Domain names to bind to its assigned internal ip addresses. This is done through the Windows hosts file - c:\winnt\system32\drivers\etc\hosts. This is required so all internet protocol bindings will be to the correct ip address.

Edit the Notes.ini file for each server

Add the following line to the Notes.ini file of your Domino servers

TCPIP_TCPIPAddress=0,192.168.0.4:1352

Where the first part of the variable TCPIP corresponds to your port name and the IP address corresponds to the appropriate internal ip address you have assigned to your server.

Also add the following line which is required by the Websphere plugin:

HTTPEnableConnectorHeaders=1

Disable IIS Socket Pooling

This one is the big show stopper that gets everyone. IIS uses a feature called ‘Socket Pooling’ which means even though you configure it to operate only on one IP address it actually binds itself to all ip addresses which causes problems with all your internet protocols. For information on disabling this click this link:

http://support.microsoft.com/default.aspx?scid=KB;en-us;q238131

No you’ll be able to use the same port numbers on the different ip addresses and IIS will behave itself like you want it to.

Configuring IIS

Here’s some IIS configuration tips:

If you want Domino to handle all authentication enable only the ‘Anonymous Access’ option in the ‘Anonymous Access and Authentication control’ section of the Directory Security tab of your IIS website properties.
The IP Address specified in the website identification section should be the same for each web server and all should have port 80. This IP address should be the IP address you have assigned to IIS. In the Advanced section of the website identification add the various headers for incoming web addresses and again assign them to the same IP address for IIS. I have added 2 headers for each of my websites in the format of: ‘www.xyz.com.au’ and ‘xyz.com.au’.
My Home Directory for each website in IIS has been set to the Domino data directory

Configuring Websphere plugin

If you want ALL incoming traffic directed to your Domino server by IIS the ‘’ section of the websphere plugin configuration file should only contain the following line: .

I’ve copied some sections from the websphere plugin configuration file showing how you can configure each section of it for each Domino partition. You just need to copy and configure each section appropriate to your Domino server partitions. You should only need to change the port numbers (if required) and ‘XYZ’ with your server/Domain names.

  <!-- The transport defines the hostname and port value that the web server

       plugin will use to communicate with the application server. --> 

 <Transport Hostname="www.xyz.com.au" Port="80" Protocol="http"/>

Configuration of internet site documents

When configuring your internet site documents in the Public Address Book, make sure of the following:

The value entered in the Organization field matches that of your Notes Certifier Organization name
For some reason Lotus decided to make the ‘Domino Server that Host this site’ field multi-value if a space was entered. If you have a space in your server name this could cause problems as it will break your server name into multi-values. I had to edit the public address book template to remove the option for a space to act a multi-value seperator.

Hope this helps in some way…

Alex Elliott

hcl-bot · June 24, 2003, 11:22am

Subject: configure Domino with IIS

I have to upgrade an R5.0.12 server that already uses IIS for authentication but am increasingly nervous having seen some of the comments here.

We’ve seen the R6 admin help and a description of configuration issues in the 6.0.2 release notes, chapter 1, New Enhancements. http://www-12.lotus.com/ldd/doc/uafiles.nsf/docs/RN602/$File/readme.pdf

There doesn’t seem to be any confirmation that an upgrade of R5 with IIS already configured will retain the IIS link, but then again there’s nothing that says explicitly that it won’t. Someone must know - if you do I’d be very grateful for any advance warnings. What’s most worrying is the apparent expectation that people will use front- & backend servers (IIS on the front), which is something we dont want to do.

I was hoping to ditch IIS with R6 & use LDAP for authentication on Active Directory but our AD isn’t ready yet - or at least we can’t use it.

fingers crossed

mark m.bryson@lancaster.ac.uk

hcl-bot · September 3, 2003, 11:47am

Subject: RE: configure Domino with IIS

Please let me know if you ever get R6 authenticating off of AD via LDAP. I know nothing about LDAP queries and it would make my life allot easier than IISS on R6 for authentication…

Brent

hcl-bot · March 26, 2004, 10:11am

Subject: RE: configure Domino with IIS

Hello Brent,

Even i am facing the some problem in the same context.

I want to use AD via LDAP for authentication. Because i dont know anythin about IIS.

Have you got something about the same.

if found any solution please let me know.

And if possible can u also please tell me how to configure IIS for that matter

awaiting for your reply.

Thanks

Prashant

hcl-bot · June 30, 2003, 9:35am

Subject: Ugrading domino / IIS

It would be better when upgrading an R5 system working with IIS, if the R6 install warned you that your HTTP service would cease to function after the upgrade.

hcl-bot · May 28, 2003, 2:29pm

Subject: THANK YOU!

The line on how to pass ALL traffic to Domino did the trick! I am running Domino.D0c on R6 with IIS out front and I was having trouble with the replica ID’s again.

Thanks a Million!

hcl-bot · February 27, 2004, 6:34pm

Subject: Will this work with Domino’s servlet manager?

We are considering using IIS in front of Domino because we need to use a ColdFusion plug-in to IIS.But we also need servlets running in Domino’s servlet manager. Can I direct URLs with “/servlet” to Domino, with parameters intact?

Thanks in advance!

hcl-bot · August 16, 2003, 8:02am

Subject: Thanks for the good tips.

I finaly have it all going. Thanks to your tips.

Bas Auer

hcl-bot · August 22, 2008, 8:24am

Subject: Any tips on ND8 with IIS?

I am looking to upgrade our Domino 6.5 server with IIS to Domino 8.0.1 with IIS. It seems quite a bit more involved, as WAS does not install with the Domino. If you know of any snags on that installation and configuration, can you let me know? Thanks for the great article on Domino 7.

hcl-bot · January 21, 2004, 1:03pm

Subject: Tips to help you configure Domino with IIS

Alex

Have you (or anyone else) have any experience or tips for running domino R6.5 with IIS on the same server?

Any suggestions or ideas greatfully accepted.

hcl-bot · January 22, 2004, 5:47pm

Subject: RE: Tips to help you configure Domino with IIS

Richard,The information I posted was for running Domino and IIS on the same server. The instructions apply equally to R6x and R6.5x

Regards,

Alex

hcl-bot · January 4, 2007, 10:14am

Subject: RE: Tips to help you configure Domino with IIS

This thread is very old, but in case someone is still keeping up with it, can anyone comment on the applicability of the top level tips to ND7 server? I have tried most everything and the ISAPI filter that uses the WAS plugin appears to be problematic. When I look at the event log on the server, it shows consistent failure to load. I have set permissions properly on the virtual directory that contains the DLL. I’m wondering if there’s a version issue at hand with ND7 and the WAS plugin?

hcl-bot · March 6, 2007, 2:52pm

Subject: RE: Tips to help you configure Domino with IIS

What registry settings are you using for the plugin? The newer plugin looks for different settings.