TROUBLESHOOTING


Internet user authentication using a secondary Domino Directory or Extended Directory Catalog fails
To authenticate Internet users registered in a secondary IBM® Lotus® Domino® Directory, make sure you complete these steps:

1. Select "Notes as the "Domain Type" in the Directory Assistance document.

2. Set "Trusted for credentials" to Yes for at least one naming rule in the Directory Assistance document. The rule or rules should correspond to the names of the Internet users you want to authenticate.

3. Enter the secondary directory's Domino domain in the "Domain Name" field. Do not enter: the name of a condensed Directory Catalog, the name of the server's primary domain, or a domain name that is used in another Directory Assistance document. If you created the secondary directory manually and it's not associated with a Domino domain, make up a unique domain name.

4. If you use name-and-password authentication, and you choose the authentication option "Fewer name variations with higher security," make sure users provide either their hierarchical names or common names for authentication rather than first names, last names, or short names only.

5. If you include groups of users in database ACLs on the server that authenticates, store those groups in the server's primary Domino Directory and/or in one directory enabled for "Group authorization" in the directory assistance database.

Related topics