Need help with Domino DB security issue

Domino Database security seems to be bypassed by Lotus Sametime's (Sametime is an app. that runs on Domino) "Add invitee" Java applet.  I can't keep the applet from being able to browse the secondary directory no matter what ACL settings I use.  This is a problem since I want to use a secondary directory for each company accessing the server but I don't want them seeing each others directories.


Example case:
Suppose I create a secondary domino directory, "secondDir.nsf" . I next create/install a directory assistance DB and add secondDir.nsf to it. Finally, I create a group, SecondDirGroup, and add to it a few person names.

Now, if I set secondDir.nsf's ACL to allow only access by SecondDirGroup (removing all other entries and setting "enforce a consistent ACL..."), I can still access secondDir.nsf from Sametime's invite attendee Java applet using a login that is not anyone in SecondDirGroup. That is I can see everyone and every group listed in secondDir.nsf.

Any ideas?
TaurusAsked:
Who is Participating?
 
SysExpertConnect With a Mentor Commented:
I would check the Lotus Sametime/IBM support site and if there is not an answer there, open up a ticket with Lotus regarding this issue.

Because of the integration, this may be a problem.

Other options.

Use a *.dir link and put the , SecondDirGroup in a seperate directory.

the *.dir file can include access control lists.

I hope this helps !
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.