Recover from mistake deleted Manager in ACL

Hi

I have by mistake deleted the only person who was manager in the ACL of a database.

I have also Enforce a consistent access control list active.

The database was only for testpurpose but if it was real it would be a severe situation.

Is it possible to recover with for example an another program, not neccesary manufactured by Lotus that can change the settings to normal values bypassing Notes security?

If anyone have an answer I will upgrade the points.
tord_fAsked:
Who is Participating?
 
HemanthaKumarConnect With a Mentor Commented:
HI Tord here is the trick

1. Create a new blank database locally

2. Create an agent called 'ACLUPdater' with the following
code in the initialise method

     Dim LocalDBName As String
     Dim MName As NotesName
     Dim Sess As New NotesSession()

     On Error Goto CantchangeACL

     LocalDBPath = <Path to Dead Database on server>
     UserName = <Your Notes Name>

     Set LocalDB = New NotesDatabase("",LocalDBPath)
     Set MName = New NotesName(UserName)
     Call LocalDB.Grantaccess(MName.Canonical,ACLLEVEL_MANAGER)

3. Save the agent as a shared Scheduled Hourly Agent
that runs on the server that the dead database is on.

4. Create another Agent Called 'AdjustServerName'
with the following code in the initialise method

     Dim Sess As New NotesSession()
     Dim ThisDb As NotesDatabase

     Set ThisDB = Sess.CurrentDatabase
     Set agent = thisdb.GetAgent("ACLUpdater")
     Call agent.Save

5. Save this agent a shared menu triggered.

6. Switch to the server ID and run the ''AdjustServerName' agent

7. Switch back to your ID and copy the database to the
server with the dead Database.

8. Make sure the server can run 'unrestricted agents' on
itself (i.e. put the server name in the "allowed to run
unrestricted agents list" in the servers document )

9. If you needed to do step 9, restart amgr on the server.

10. Wait for the ACLUpdater agent to run . . . And you
will be a manager of that database again !!


Lemme know if u have any problems,

Good Luck
~Hemanth
0
 
ArunkumarCommented:
Hi tord,

At the server the database can be viewed in two ways, Local as well as Server.

The server view of the database has all the security enforced.  Where as the local view of the database does not have any security to it.

So, on the server machine open the specific database on local, then change the DB ACL security to whatever you want.  Once you apply the changes on local, automatically the changes will be reflected on the server view too.

Cool !!!

Good Luck !

-Arun


PS:  You can also write an Agent that runs to update the ACL on the local db on Server
0
 
ghassan99Commented:
Arun,
If 'enforce consistent ACL is set...', you cant even open it on the server!  And you cant bypass this especially on R5.

tord_f,
Try to make a copy of the DB without inheriting the ACL.

-Gus
0
Cloud Class® Course: Ruby Fundamentals

This course will introduce you to Ruby, as well as teach you about classes, methods, variables, data structures, loops, enumerable methods, and finishing touches.

 
ArunkumarCommented:
Oops !!!

I am sorry I did not get that properly.

:(
Arun



0
 
HemanthaKumarCommented:
Hi tord

I have some idea to go about, but before I tell u those things, I need a clarification.

Do you have access to the server id on which the database is located ?

~Hemanth

0
 
tord_fAuthor Commented:
Hi HemanthaKumar

I am administrator of the server and I have access to all id-files that belong to it.

My idea is if it possible with Notes or any other program to restore the ACL.

Like that DOS-program that can read NTSF-filesystem without care of NTFS-rights.
0
 
HemanthaKumarCommented:
Hi tord

I have some idea to go about, but before I tell u those things, I need a clarification.

Do you have access to the server id on which the database is located ?

~Hemanth

0
 
ghassan99Commented:
Its a good work Hemanth...(copy & paste)but give credit!  We all received this tip from Lotus411.com newsletter yesterday, now didnt we?!!!

Title: Get That Access Back!!!
Author:  Simon Hendry, Dept. of Families Youth & Comm Care

Just a thought!

-Gus

0
 
HemanthaKumarCommented:
Hi GUS

That's right, I don't want to take any credit for that. Hope this forum is to help other people in providing solutions and getting them on right track.

Anyway thanx for ur comment.

~Hemanth
0
 
tord_fAuthor Commented:
Adjusted points to 150
0
 
ghassan99Commented:
Yep thats right, I do this sometimes.  A good programmer is someone who knows where to get the answers from, not only understand the software...;)

Cheers,
-Gus

0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.