Domino Directory Security

Posted on 2005-04-21
Last Modified: 2013-12-18
'User A' is able to see another user's person document and detach ID files stored in other users person documents. How do I prevent this in Domino R6.5?

The ACL on the names.nsf is set to the following:
Default = Reader

Question by:isltt
    LVL 15

    Accepted Solution

    You DON'T store id files in the Domino directory.  That's very bad practice.  If you do store them to facilitate installation of new clients, remove them immediately after.  

    And a normal setting on the ACL is to give everybody in your organization Author access (without Create documents), because like that, they can change their own password.  This does not necessarily mean that Default is Author !  
    I'd recommend:
    Default : no access
    Anonymous : no access
    */YourOrganization : Author



    Author Comment

    thanks....but the fact remains that user A can can access another users' person document. With author - Would they then be able to change web passwords of other users?
    LVL 15

    Expert Comment

    No, it's absolutely normal they can see (read , access) other users' person documents.  Because you could use the Domino Directory as a repository for public data (like phone number, department, manager,...), it's an advantage.
    But they can't EDIT those documents. With Author access (no extra roles, of course), you can only edit your own Person document, nothing else.  And you can't even edit all the data in your own person document (username etc.) is not editable.

    Send me an email if you need to detach the ID's from the directory in bulk ....



    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Highfive + Dolby Voice = No More Audio Complaints!

    Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

    For Desktop Techs: How to retain a user's Notes configuration data when swapping out the end user's computer. (Assuming that you are not upgrading to a completely different version of Notes client) All you need to do is: 1) install Notes o…
    Problem "Can you help me recover my changes?  I double-clicked the attachment, made changes, and then hit Save before closing it.  But when I try to re-open it, my changes are missing!"    Solution This solution opens the Outlook Secure Temp Fold…
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

    761 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    7 Experts available now in Live!

    Get 1:1 Help Now