Chat now with support
Chat with Support

Identity Manager 8.0 - Administration Guide for Connecting to IBM Notes

Managing IBM Notes Environments Setting up IBM Notes Synchronization Basic Configuration Data Notes Domains Notes Certificates Notes Templates Notes Policies Notes User Accounts Notes Groups Mail-In Databases Notes Servers Using AdminP Requests for Handling IBM Notes Processes Reports about Notes Domains Appendix: Configuration Parameters for Synchronization with a Notes Domain Appendix: Default Project Template for IBM Notes

General Master Data for a Notes User Account

General Master Data for an Notes User Account

Table 35: Configuration Parameters for Setting up User Accounts
Configuration parameter Active Meaning
QER\CalculateRiskIndex Preprocessor relevant configuration parameter controlling system components for calculating an employee's risk index. Changes to the parameter require recompiling the database.

If the parameter is set, values can be entered and calculated for the risk index.

Enter the following data on the General tab:

Table 36: General Master Data for a Notes User Account
Property Description
Employee Employee that uses this user account. An employee is already entered if the user account was generated by an account definition. If you create the user account manually, you can select an employee in the menu. If you use automatic employee assignment, an associated employee is created and entered into the user account when the user account is saved.

Account definition

Account definition through which the user account was created.

Use the account definition to automatically fill user account master data and to specify a manage level for the user account. The One Identity Manager finds the IT operating data of the assigned employee and enters it in the corresponding fields in the user account.

 NOTE: The account definition cannot be changed once the user account has been saved.

To create the user account manually through an account definition, enter an employee in the Employee box. You can select all the account definitions assigned to this employee and through which no user account has been created for this employee.

Employee documents can also be created through account definitions.

Manage level User account's manage level. Select a manage level from the menu. You can only specify the manage level can if you have also entered an account definition. All manage levels of the selected account definition are available in the menu.
First name The user’s first name.
Middle name User's middle name.
Last name The user’s last name.
Short name The user’s short name.
Phonetic name The user's name in phonetic letters.
Notes domain User account's user account.
Certificate Certificate with which the user ID file and the user's mailbox file will be registered (when first added) or were registered. If you have assigned an account definition, the input field is automatically filled out with respect to the manage level. No certificate is assigned to pure employee documents.

If a certificate is not assigned when a new user account is saved, the certificate cannot be assigned later.

If a certificate is assigned when a new user account is saved, the certificate cannot be removed later.

Organizational unit Additional organization unit belonging to the user account.
Full name Full name of the user account. Full name is made up of the first name, last name, certificate and organizational unit.
Display name User account display name. The display name is made up of the full name or the first and last names.
Title User's title.
Generational affix User's generational affix, for example "Junior".
Alternative language Alternative language for the alternative names.
Alternative name Alternative name in the user's native language.

This can be used to display and search for names in IBM Notes. The alternative name has to linked to one of the user account‘s alternative language.

Email system Type of email system used by the user. "1 - Notes" is entered by default. The other input fields shown on the master data form depend on the type of email system selected.

Risk index (calculated)

Maximum risk index values for all assigned groups. This property is only visible if the configuration parameter "QER\CalculateRiskIndex" is set. For more detailed information, see the .One Identity Manager Risk Assessment Administration Guide

Notes category Categories for the inheritance of groups by the user account. Select one or more categories from the menu. Groups can be selectively inherited by user accounts. To do this, groups and user accounts or contacts are divided into categories.
User account is disabled Specifies whether the user account is blocked from logging in to the domain.

Identity

User account's identity type

Table 37: Permitted values for the identity.
Value Description
Primary identity Employee's default user account.
Organizational identity Secondary user account used for different roles in the organization, for example for subcontracts with other functional areas.
Personalized admin identity User account with administrative permissions, used by one employee.
Sponsored identity User account that is used for training purposes, for example.
Shared identity User account with administrative permissions, used by several employees.
Service identity Service account.
Privileged user account Specifies whether this is a privileged user account.

Groups can be inherited

Specifies whether the user account groups can inherit through the employee. If this option is set, the user account inherits groups through hierarchical roles or IT Shop requests.

  • If you add an employee with a user account to a department, for example, and you have assigned groups to this department, the user account inherits these groups.
  • If an employee has requested group membership in the IT Shop and the request is granted approval, the employee's user account only inherits the group if the option is set.
Related Topics

Notes User Account Email System

Notes User Account Email System

Table 38: Configuration Parameters for Creating a Mailbox File
Configuration parameter Active Meaning
TargetSystem\NDO\CreateMailDB This configuration parameter specifies whether the mailbox is created after or while the Notes user is registering with the target system. If the configuration parameter is set, the mailbox is created during registration. This uses the template of the Notes server on which the user is registered.

If the configuration parameter is not set (default), the mailbox is created after the Notes user has registered. This uses the template given in the user account or in the configuration parameter "TargetSystem\NDO\DefTemplatePath".

TargetSystem\NDO\DefTemplatePath Template for adding the mailbox on a Notes server.
TargetSystem\NDO\MailFilePath Directory on the mail server, in which the user account's mailbox files are stored.

Select the email system that the user uses from the Email system menu on the general master data form. You have the following options:

  • 1 - Notes
  • 2 - cc:Mail
  • 3 - Other
  • 4 - X.400
  • 5 - Other Internet Mail
  • 6 - POP or IMAP
  • 100 - None

    If no mail system will be used enter "None".

The properties described in the following are displayed depending on the selected email system.

 NOTE: Check whether the mail server and the mailbox name are required for the selected email system. Enter the data necessary to create the mailbox file.
Table 39: Notes User Account Email System Data
Email system Property Description
NOTES

POP or IMAP

 Mail server Notes server used as a mail server. All Notes servers marked with the option Has Notes mailbox files are available.
NOTES Mailbox template Name of the Notes template to use for creating the mail-in database. The template determines which client version is used to create the mailbox file for a user. The template must exist on the gateway server.

The data can be determined with the employee’s IT operating data. If you do not enter a template, the template entered in the configuration parameter "TargetSystem\NDO\DefTemplatePath" is used.

NOTES

POP or IMAP

 Mailbox file Name and path of the mailbox file. These are created using the template.

The mailbox file is stored on the given mail server in a special directory under the installation directory. The directory name is given in the configuration parameter "TargetSystem\NDO\MailFilePath". To use another directory, edit the value of this configuration parameter in the Designer.

NOTES

POP or IMAP

 Mailbox display name Display name of the mailbox. This is made up by template, of the first and last names to which "Mailbox" is appended.
NOTES

Other

Other Internet Mail

POP or IMAP

 Forwarding address Email address to which to forward messages. The email address must be complete (including domain).
NOTES

POP or IMAP

 Message storage Visible part of the mailbox storage. You have the following options:
  • 0 - Notes
  • 1 - Notes and Internet Mail
  • 2 - Internet Mail
NOTES

cc:Mail

Other

Other Internet Mail

POP or IMAP

 Internet address Complete SMTP address of the user account. The internet address is used to identify the message recipient when a message is received through SMTP in the IBM Notes environment. The internet address is created from the employee’s default email address depending on the manage level of the user account.
cc:Mail cc:Mail post office Post office containing the user's mailbox.
cc:Mail cc:Mail user name Mailbox's user name.
cc:Mail cc:Mail location type Location type of the mailbox. Select "LOCAL" or "REMOTE".
X.400 X.400 server Notes server used as X.400 server. All Notes servers marked with the option Has Notes mailbox files are available.
X.400 X.400 address User's mail address in X.400 format (including domain name).
Detailed information about this topic

Notes User Account Address Data

Notes User Account Address Data

Enter the address and telephone information for contacting the employee that uses this user account on the Company and Private tabs. Enter other known data for describing the employee in more detail. This data is copied from the employee‘s master data depending on the manage level of the user account.

Additional Master Data for a Notes User Account

Additional Master Data for Notes User Accounts

Enter the additional data for a user account on the Miscellaneous tab.This data is mainly for the mailbox file and message forwarding. You can find the size of a user account's mailbox on regular basis using a scheduled process plan. Prerequisite for this is that you enter the correct mail server data and the mailbox file path on the General tab.

To find out the size of the user account's mailbox file

  • Configure and enable the schedule "Load Designer user mail file sizes" in the IBM Notes.

    For more detailed information about configuring schedules, see the One Identity Manager Configuration Guide.

Table 40: Additional Master Data for Notes User Accounts
Property Description
Size [KB] Logical size of the mailbox file.
Physical size [KB] Physical size of the mailbox file.
Max. size [KB] Maximum permitted size of the mailbox.
Warn at [KB] When this threshold is exceeded, users are sent an email.
Internet password/Password confirmation

The user's internet password. Web users must use this password for authentication on a Domino web server.

NOTE: One Identity Manager password policies are taken into account when a user password is being verified. Ensure that the password policy does not violate the target system's requirements.

Sametime server Notes server used as a sametime server. Enter a sametime server for user accounts, which use the IBM Notes sametime function.
Calendar domain Domain, which applies if the user account uses another calendar and schedule functionality.
Website The user's website.
Comment Spare text box for additional explanation.
Related Topics
Related Documents