Chat now with support
Chat with Support

Identity Manager 8.1.5 - Administration Guide for Connecting to IBM Notes

Managing IBM Notes environments Setting up IBM Notes synchronization Basic configuration data Notes domains Notes certificates Notes templates Notes policies Notes user accounts Notes groups Mail-in databases Notes server Using AdminP requests for handling IBM Notes processes Reports about Notes domains Configuration parameters for synchronizing a Notes domain Default project template for IBM Notes

Entering master data for Notes user accounts

A user account can be linked to an employee in One Identity Manager. You can also manage user accounts separately from employees.

NOTE: It is recommended to use account definitions to set up user accounts for company employees. In this case, some of the master data described in the following is mapped through templates from employee master data.

NOTE: If employees are to obtain their user accounts through account definitions, the employees must own a central user account and obtain their IT operating data through assignment to a primary department, a primary location, or a primary cost center.

To create a user account

  1. In the Manager, select the IBM Notes | User accounts category.

  2. Click in the result list.

  3. On the master data form, edit the master data for the user account.

  4. Save the changes.

To edit master data for a user account

  1. In the Manager, select the IBM Notes | User accounts category.

  2. Select the user account in the result list and run the Change master data task.

  3. Edit the user account's resource data.

  4. Save the changes.

To manually assign or create a user account for an employee

  1. In the Manager, select the Employees | Employees category.

  2. Select the employee in the result list and run the Assign Notes user accounts task.

  3. Assign a user account.

  4. Save the changes.
Detailed information about this topic
Related topics

General master data of a Notes user account

Table 32: Configuration parameters for risk assessment of user accounts

Configuration parameter

Effect when set

QER | CalculateRiskIndex

Preprocessor relevant configuration parameter controlling system components for calculating an employee's risk index. Changes to the parameter require recompiling the database.

If the parameter is enabled, values for the risk index can be entered and calculated.

Enter the following data on the General tab.

Table 33: General master data of a Notes user account
Property Description
Employee Employee that uses this user account. An employee is already entered if the user account was generated by an account definition. If you create the user account manually, you can select an employee in the menu. If you are using automatic employee assignment, an associated employee is found and added to the user account when you save the user account.

You can create a new employee for a user account with an identity of type Organizational identity, Personalized administrator identity, Sponsored identity, Shared identity, or Service identity. To do this, click next to the input field and enter the required employee master data. Which login data is required depends on the selected identity type.

Account definition

Account definition through which the user account was created.

Use the account definition to automatically fill user account master data and to specify a manage level for the user account. One Identity Manager finds the IT operating data of the assigned employee and enters it in the corresponding fields in the user account.

NOTE: The account definition cannot be changed once the user account has been saved.

Employee documents can also be created through account definitions.

Manage level Manage level of the user account. Select a manage level from the menu. You can only specify the manage level can if you have also entered an account definition. All manage levels of the selected account definition are available in the menu.
First name The user’s first name.
Middle name User's middle name.
Last name The user’s last name.
Short name The user’s short name.
Phonetic name The user's name in phonetic letters.
Notes domain User account's user account.
Certificate Certificate with which the user ID file and the user's mailbox file will be registered (when first added) or were registered. If you have assigned an account definition, the input field is automatically filled out with respect to the manage level. No certificate is assigned to pure employee documents.

If a certificate is not assigned when a new user account is saved, the certificate cannot be assigned later.

If a certificate is assigned when a new user account is saved, the certificate cannot be removed later.

Organizational unit Additional organization unit belonging to the user account.
Display name User account display name. The display name is made up of the full name or the first and last names.
Title User's title.
Generational affix User's generational affix, for example, "Junior".
Alternative language Alternative language for the alternative names.
Alternative name Alternative name in the user's native language.

This can be used to display and search for names in IBM Notes. The alternative name has to linked to one of the user account‘s alternative language.

Email system Type of email system used by the user. "1 - Notes" is entered by default. The other input fields shown on the master data form depend on the type of email system selected.

Risk index (calculated)

Maximum risk index value of all assigned groups. The property is only visible if the QER | CalculateRiskIndex configuration parameter is set. For detailed information, see the One Identity Manager Risk Assessment Administration Guide.

Category Categories for the inheritance of groups by the user account. Groups can be selectively inherited by user accounts. To do this, groups and user accounts or contacts are divided into categories. Select one or more categories from the menu.
User account is disabled Specifies whether the user account is blocked from logging in to the domain.

Identity

User account's identity type Permitted values are:

  • Primary identity: Employee's default user account.

  • Organizational identity: Secondary user account used for different roles in the organization, for example for subcontracts with other functional areas.

  • Personalized administrator identity: User account with administrative permissions, used by one employee.

  • Sponsored identity: User account that is used for a specific purpose, such as training.

  • Shared identity: User account with administrative permissions, used by several employees. Assign all employees that use this user account.

  • Service identity: Service account.

Privileged user account Specifies whether this is a privileged user account.

Groups can be inherited

Specifies whether the user account can inherit groups through the employee. If this option is set, the user account inherits groups through hierarchical roles or IT Shop requests.

  • If you add an employee with a user account to a department, for example, and you have assigned groups to this department, the user account inherits these groups.
  • If an employee has requested group membership in the IT Shop and the request is granted approval, the employee's user account only inherits the group if the option is set.
Related topics

Notes user account email system

Table 34: Configuration parameters for creating a mailbox file
Configuration parameter Effect when set
TargetSystem | NDO | CreateMailDB This configuration parameter specifies whether the mailbox file is created after or during registration of the Notes user in the target system. If the configuration parameter is set, the mailbox is created during registration. This uses the template of the Notes server on which the user is registered.

If the configuration parameter is not set (default), the mailbox is created after the Notes user has registered. This uses the template given in the user account or in "TargetSystem | NDO | DefTemplatePath".

TargetSystem | NDO | DefTemplatePath Template for adding the mailbox on a Notes server.
TargetSystem | NDO | MailFilePath Directory on the mail server, in which the user account's mailbox files are stored.

Select the email system that the user uses from the Email system menu on the general master data form. You have the following options:

  • 1 - Notes
  • 2 - cc:Mail
  • 3 - Other
  • 4 - X.400
  • 5 - Other Internet Mail
  • 6 - POP or IMAP
  • 100 - None

    If no mail system will be used, enter "None".

The properties described in the following are displayed depending on the selected email system.

NOTE: Check whether the mail server and the mailbox name are required for the selected email system. Enter the data necessary to create the mailbox file.
Table 35: Notes user account email system data
Email system Property Description
Notes

POP or IMAP

 Mail server Notes server used as a mail server. All Notes servers marked with the Has Notes mailbox files option are available.
Notes Mailbox template Name of the Notes template to use for creating the mail-in database. The template determines which client version is used to create the mailbox file for a user. The template must exist on the gateway server.

The data can be determined with the employee’s IT operating data. If you do not enter a template, the template entered in "TargetSystem | NDO | DefTemplatePath" is used.

Notes

POP or IMAP

 Mailbox file Name and path of the mailbox file. These are created using the template.

The mailbox file is stored on the given mail server in a special directory under the installation directory. The directory name is given in the configuration parameter "TargetSystem | NDO | MailFilePath". To use another directory, edit the value of this configuration parameter in the Designer.

Notes

POP or IMAP

 Mailbox display name Display name of the mailbox. This is made up by template, of the first and last names to which "Mailbox" is appended.
Notes

Other

Other Internet Mail

POP or IMAP

 Forwarding address Email address to which to forward messages. The email address must be complete (including domain).
Notes

POP or IMAP

 Message storage Visible part of the mailbox storage. You have the following options:
  • 0 - Notes
  • 1 - Notes and Internet Mail
  • 2 - Internet Mail
Notes

cc:Mail

Other

Other Internet Mail

POP or IMAP

 Internet address Complete SMTP address of the user account. The Internet address is used to identify the message recipient when a message is received through SMTP in the IBM Notes environment. The Internet address is created from the employee’s default email address depending on the manage level of the user account.
cc:Mail cc:Mail post office Post office containing the user's mailbox.
cc:Mail cc:Mail user name Mailbox's user name.
cc:Mail cc:Mail location type Location type of the mailbox. Select "LOCAL" or "REMOTE".
X.400 X.400 server Notes server used as X.400 server. All Notes servers marked with the Has Notes mailbox files option are available.
X.400 X.400 address User's mail address in X.400 format (including domain name).
Detailed information about this topic

Notes user account address data

Enter the address and telephone information for contacting the employee that uses this user account on the Company and Private tabs. Enter other known data for describing the employee in more detail. This data is copied from the employee‘s master data depending on the manage level of the user account.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating