SECURITY


Notes and Domino ID security
To prevent unauthorized access to servers and applications, secure IBM® Lotus® Notes® and IBM® Lotus® Domino® IDs. These tasks apply only to Lotus Notes users and Lotus Domino servers.
TaskUse
Require a password for all user and server IDs.Prevent an unauthorized user from using an illicitly obtained ID to authenticate with a server.
Enforce password quality testing for IDs.Prevent unauthorized users from guessing passwords.
Assign multiple passwords to server and certifier IDs.Require multiple users to enter passwords before gaining access to the ID file to prevent one person from controlling a server or certifier ID.
Compare a password with the password stored in the Domino Directory and require users to change their passwords periodically.Prevent an unauthorized user from using an illicitly obtained ID to authenticate with a server.
Compare a Domino public key with the public key stored in the Domino Directory. Prevent an unauthorized user from using an illicitly obtained ID to authenticate with a server.
Use the ID vaultEasily recover from lost or damaged IDs and from forgotten passwords
Set up a security settings policy document.Manage Notes and Internet password properties, such as password synchronization and expiration settings, on an organizational level.
Lock the user ID after x minutes of inactivity.Automatically log off servers to prevent an unauthorized user from using the workstation.
Use F5 to log off (basic Notes configuration only).Immediately log off servers to prevent an unauthorized user from using the workstation.
Save user IDs on a disk instead of on the workstation and keep disks in a safe place.Physically protect user IDs.
Locate workstations in a secure area -- for example, a locked room.Prevent unauthorized access to the ID files.
Install Smartcard readers on user workstations and have users log in to Notes with Smartcards.Physically protect user IDs and private Internet keys.
Related topics