?
Solved

How to change ACL access of multiple database

Posted on 2006-07-21
7
Medium Priority
?
393 Views
Last Modified: 2013-12-18
...still figuring out the reason why this thing happened, but when we try to register a person to Domino Directory, the database [mail] will be created with the following default entries in the ACL

-Default-        Unspecified / Designer
Anonymous    Unspecified / Designer

...this cause a major concern because ANYBODY can open, edit/change the person mail.  Is there a way to change the ACL access to its default value "No Access" for the two entries in the database? So that when registering new person to Domino Directory we don't need to update this value manually.

...Also, for those database that have Designer access for -Default- and Anonymous...can i change them all together in one-go or can only be done one-at-a-time?

...appreciate your help.
0
Comment
Question by:marjun_mjr
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 

Author Comment

by:marjun_mjr
ID: 17152477
...ok, i think i find the solution;

...i open the mail template and look at its ACL and noticed that the default entries for -Default- and Anonymous has been change to "Designer"...I change it to "No Access" and now, everytime I register a new person those entries are no longer have "Designer" access.

...Now since it does not refresh/change the ACL access of the already created database [with Designer access to -Default and Anonymous], is there a way to change them in one-go???  

...regards
0
 
LVL 63

Accepted Solution

by:
Zvonko earned 800 total points
ID: 17152992
Open Admin client on server machine localy and change it localy as Manager.
It is not a good idea to do that often, but for one time clean up it will go.
0
 
LVL 18

Expert Comment

by:marilyng
ID: 17153199
Marjun, it also depends on what version of notes you have.  In R5, each person who registered people uses the templates on their local client to spawn the new databases.

So, in the TEMPLATE (NTF) files for the MAIL databases on the server, you need to add:
[-Default-]   In brackets     person type is unknow, access is No Access
[Anonymous] In brackets   person type is unknown, access is No Access

So now your TEMPLATES ACLS read:

-Default-
Anonymous
SomeOther
SomeServer
[-Default-]
[Anonymous]
[SomeAdminstrationGroup]

If you adjust your templates on the server using Administrator, you can globally add these changes to all the templates.  Then instruct all of your people who do registrations to replicate templates in the replication page.  This way the template ACL changes are rolled down to their local mail file templates.

Any NEW database created from the templates will have the BRACKETED ACL list automatically included in the ACL.

If you do this for all the templates on the server, and make sure the clients replicate the templates, then user's local templates will also have your default ACL.
0
 
LVL 63

Assisted Solution

by:SysExpert
SysExpert earned 800 total points
ID: 17155273
I would use one of the ACl tools to do an audit.
See

Then simply use the Admin client to manually change the ACL if there are not a lot, otherwise an agent can do this.

see

http://www-10.lotus.com/ldd/sandbox.nsf/Search?SearchView&Query=ACL&SearchOrder=0&Start=1&Count=100
ACL scanner is what I use ( slight modified views ), there are also tools that can make mass changes. Test carefully before using one of these !!!!

I hope this helps !
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

You’ve got a lotus Domino web server, and you have been told that “leverage browser caching” is a must do. This means that we have to tell the browser everywhere in the web to use cache. In other words, we set (and send) an expiration date in the HT…
I thought it will be a good idea to make a post as it will help in case someone else faces these issues. I trust this gives an idea how each entry in Notes.ini can mean a lot for the Domino Server to be functioning properly. This article discusses t…
Visualize your data even better in Access queries. Given a date and a value, this lesson shows how to compare that value with the previous value, calculate the difference, and display a circle if the value is the same, an up triangle if it increased…
How to fix incompatible JVM issue while installing Eclipse While installing Eclipse in windows, got one error like above and unable to proceed with the installation. This video describes how to successfully install Eclipse. How to solve incompa…
Suggested Courses
Course of the Month7 days, 19 hours left to enroll

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question