Creating an Offline Security Policy documentAdded by IBM on December 16, 2010 | Version 1 (Original)
|Create an Offline Security Policy document for each certifier you created for offline users. Offline Security Policy documents are stored in the doladmin.nsf database on the Lotus® Domino® server.
Create an Offline Security Policy document for each certifier you created for offline users. Offline Security Policy documents are stored in the doladmin.nsf database on the Lotus® Domino® server.
About this task
Perform the following steps:
- From the Domino Administrator, select your server, for example, ServerA/Org.
- Click Configuration.
- In the left pane, click Offline Services, and then click Security.
- Click New Security Policy.
- In the Security domain field, type the hierarchical name of an organization or organizational unit certifier you created for offline users. Remember to type the leading forward slash (/). The following names are examples of certifier names:
Note: Specify a country code if the certifier uses one, for example, /Sales/Acme/US.
In the ID deployment policy field, click one of the following options:
Table 1. ID deployment policy options
Optional: Click Overwrite existing user IDs to cause users' offline IDs to be overwritten with a new ID each time they install a place offline.
|Prompt for ID during download||Before offline installation, users are asked to specify where on their computers their user IDs are stored. The administrator must provide the IDs to the users. This is the default ID deployment policy.|
This option is recommended for and applies only to offline users who are IBM® Lotus Notes® users registered with Notes IDs in the primary Domino Directory of the Domino server (names.nsf).
|Automatically generate user IDs||Before offline installation, a certifier ID is generated for users automatically. If you select this option, the Automatic tab is displayed. Click this tab and attach the certifier ID to be generated, set the password, and set the ID expiration date. |
You must select this option if offline users are not registered in the primary Domino Directory of the Domino server. For example, you must select this option if offline users are registered in a remote LDAP directory.
Note: Do not select this option if offline encryption is used. Users whose IDs are overwritten will not be able to open an offline place encrypted with a key from the previous ID.
Save the document.
What to do next
For security reasons, after you have created all the Offline Security Policy documents that you require, back up the doladmin.nsf database and then delete any of the new certifier ID files from your system directory.
Parent topic: Setting up Lotus Quickr for offline use (optional)
Previous topic: Creating certifier IDs for offline use
Next topic: Translating LDAP distinguished names for offline use