Chat now with support
Chat with Support

Identity Manager 9.1.1 - Administration Guide for Connecting to HCL Domino

Managing HCL Domino environments Synchronizing a Domino environment
Setting up initial synchronization of a Domino environment Domino server configuration Setting up a gateway server Creating a synchronization project for initial synchronization of a Notes domain Adjusting the synchronization configuration for Domino environments Running synchronization Tasks following synchronization Troubleshooting Ignoring data error in synchronization Pausing handling of target system specific processes (Offline mode)
Managing Notes user accounts and employees Managing memberships in Notes groups Login information for Notes user accounts Using AdminP requests for handling Domino processes Mapping of Notes objects in One Identity Manager
Notes domains Notes user accounts Notes groups Notes certificates Notes templates Notes policies Notes mail-in databases Notes server Reports about Notes objects
Handling of Notes objects in the Web Portal Basic data for managing a Domino environment Configuration parameters for managing a Domino environment Default project template for Domino Processing methods of Domino system objects Domino connector settings

Setting up a gateway server

The gateway server performs the function of the synchronization server. All One Identity Manager Service actions are run against the target system environment on the synchronization server. Data entries required for synchronization and administration with the One Identity Manager database are processed by the synchronization server. The synchronization server must be declared as a Job server in One Identity Manager.

To set up a gateway server

  1. Configure the Notes client.

  2. Install the One Identity Manager Service with Domino connector and declare the gateway server as Job server in the One Identity Manager database.

  3. (Optional) You can add an archive database for backing up ID files in order to restore user ID files using the ID restore method.

Detailed information about this topic

System requirements for the gateway server

To set up a gateway server, a server has to be available with the following software installed:

  • Windows operating system

    The following versions are supported:

    • Windows Server 2022

    • Windows Server 2019

    • Windows Server 2016

    • Windows Server 2012 R2

    • Windows Server 2012

  • Microsoft .NET Framework version 4.8 or later

    NOTE: Take the target system manufacturer's recommendations into account.
  • Windows Installer

  • IBM Notes Client version 8.5.3 or 10.0 or HCL Notes Client version 11.0.1 or 12.0

    NOTE:

    • Run the installation in single-user mode.

    • You must run a proper installation. Domino COM class libraries are registered during installation. This requires the Domino connector.

  • Write access to the Notes client install directory and the One Identity Manager install directory.

  • One Identity Manager Service, Domino connector

    • Install One Identity Manager components with the installation wizard.

      1. Select Select installation modules with existing database.

      2. Select the Server | Job Server | Domino machine role.

Special requirements for synchronizing an IBM Domino 8.5. or 9 environment

The following versions of the Domino and Notes components are the minimum requirements for synchronizing a Domino 8.5 or 9 environment.

  • Domino Server version 8.5.1 with Fix Pack 2 or later or version 9.0.1.

  • Notes client in version 8.5.3, Fix Pack 4 or Notes client version 10.0

Notes for synchronizing HCL Domino 12

If the connected Domino system uses Domino 12 and the Domino connector has write access to the target system, then the gateway server must have Notes client version 12 installed. The 64-bit variant of Notes Client 12.0.1 is currently not supported.

If read-only access to the target system is required, an older Notes client version can also be used on the gateway server.

Configuring the Notes client

To configure the Notes client

  1. Extend the PATH variable to include the default search path (installation directory) and the data directory (<Installation directory>\data).

    • Enter the Notes installation path in the operating systems default search path (PATH variable). This is the path to find the Notes.exe.

    • Also add the path selected for the Notes data directory during the Notes client's installation to the PATH variables.

  2. Specify the directory for the ID files repository (<Installation directory>\data\IDS\<Name of the domain>).

  3. Ensure the synchronization user's user ID file is available.

    A separate ID file must be provided for this user. The path to this ID file is entered later into the custom INI file. User ID files with multiple passwords are not supported.

    NOTE: The administrator ID file that is created when the Notes server is installed may not be used because it is used for other administrative tasks.

  4. Keep the certifier ID file available for certificate administration.

    Set up all certifier ID files for registering users on the gateway server. Certifier ID files with multiple passwords are not supported.

  5. Start the Notes client with the synchronization user's ID file and log in.

    This causes the configuration entries to be made on the computer. The access permissions can be checked by calculating a new user with the ID file as a test.

  6. Copy the Domino Directory certificate documents into the user account's personal address book for synchronization.

  7. Check whether the certification log certlog.nsf exists.

  8. Create a custom INI file.

    The path of the synchronization user's ID file must be entered in this INI file.

NOTE:

  • If you did not install the Notes client in the default install directory, modify the default search path and data directory in the PATH variables as well as the path entries in Notes.ini and your custom INI file to your install directory path.

  • If you are using Notes client version 10.0, change the path to Notes.ini. Depending on the installation, this file can be saved in the user profile directory.

Detailed information about this topic

Copying Notes certificates

When you are configuring the gateway server ensure that the certification documents are copied from the Domino Directory into the synchronization user's personal address book. This is necessary to enable the Domino connector to add, rename, or move user accounts in the target system.

TIP: Copy new certificates regularly from the Domino Directory into the synchronization user's personal address book. For more information about copying certificate documents, see your Domino documentation.
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating