Solved

ALC Defaults

Posted on 2002-07-04
3
167 Views
Last Modified: 2013-12-18
I'm trying to set a standard for our ALC defaults.  We recently started allowing a few people from outside our organization access to our notes server by issuing them an .id file and notes client in order to update a database.  I noticed that some of our databases ACL were opened up more then they should be, this could pose a security risk so I’m doing an audit of all databases.

What is a good standard for setting the default ACL lists?  I think I’ll set this on all databases then open them up according to who needs specific access.

How does this look for a starting point, am I missing anything?
Default - No access
Anonymous  - No access
LocalDomainServers - Manager
AdminTeam -  Manager
OtherDomainServers - No access

Also Uniform Access is set to False on most of the databases, it is good practice to set this to true and what are the implications?
0
Comment
Question by:bnewton
  • 2
3 Comments
 
LVL 10

Expert Comment

by:zvonko
ID: 7130034
The defaults look good.

The UniformAccess requires observation of the replication after setting this flag. In most cases you have to synchronize the ACL's between the replicas best by hand with an Manger client. After this synchronization you have to decide from which replica this ACL is allowed to be changed and which server has to do this.

Good luck,
zvonko

0
 
LVL 24

Expert Comment

by:HemanthaKumar
ID: 7130212
Here are few technotes that would be a useful reference for you.

The ABC's of using the ACL
==========================
http://www-10.lotus.com/ldd/today.nsf/62f62847467a8f78052568a80055b380/be08e4acfc72cd72852565d9004cb61c?OpenDocument

Follow the related links for more info...

~Hemanth
0
 
LVL 10

Accepted Solution

by:
zvonko earned 200 total points
ID: 7143878
Hello bnewton,

please give a note whether you are interested in more details and in which one.

So long,
zvonko


0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

  In today’s Arena we can’t imagine our lives without Internet as we are highly used to of it. If we consider our life style just for only 2 min we found that face to face communication is swapped by e-communication.  Every Where from Works place to…
IBM Notes offer Encryption feature using which the user can secure its NSF emails or entire database easily. In this section we will discuss about the process to Encrypt Incoming and Outgoing Mails in depth.
In this video I am going to show you how to back up and restore Office 365 mailboxes using CodeTwo Backup for Office 365. Learn more about the tool used in this video here: http://www.codetwo.com/backup-for-office-365/ (http://www.codetwo.com/ba…
Many functions in Excel can make decisions. The most simple of these is the IF function: it returns a value depending on whether a condition you describe is true or false. Once you get the hang of using the IF function, you will find it easier to us…

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now