Link to home
Start Free TrialLog in
Avatar of isltt
isltt

asked on

Domino Directory Security

'User A' is able to see another user's person document and detach ID files stored in other users person documents. How do I prevent this in Domino R6.5?

The ACL on the names.nsf is set to the following:
Default = Reader

ASKER CERTIFIED SOLUTION
Avatar of Bozzie4
Bozzie4
Flag of Belgium image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of isltt
isltt

ASKER

thanks....but the fact remains that user A can can access another users' person document. With author - Would they then be able to change web passwords of other users?
No, it's absolutely normal they can see (read , access) other users' person documents.  Because you could use the Domino Directory as a repository for public data (like phone number, department, manager,...), it's an advantage.
But they can't EDIT those documents. With Author access (no extra roles, of course), you can only edit your own Person document, nothing else.  And you can't even edit all the data in your own person document (username etc.) is not editable.

Send me an email if you need to detach the ID's from the directory in bulk ....

cheers,

Tom