Professional Documents
Culture Documents
The question is no longer, "How can we?" The question now is, "How should we?" Andrew Pollack, President Northern Collaborative Technologies
Language Note
I realize that for some of you, English is not your primary language, and for others, my accent is not the same as yours. If you are having trouble understanding me during this talk, please raise your hand and I will try to slow down and speak more clearly. Thank you.
Wireless Devices
Wireless device noises are rude in any language. Please take a moment to turn off any of the following:
Cell Phones Scheduler Devices Pagers Alarm Clocks Pacemaker low-battery warning alarms Anything else you are carrying on or about your
person
administrator
Provide a trail map for finding out more, and implementing the ones you
find of value
Help you start thinking in terms of the big picture rather than being
Agenda
Who am I to be telling you anything? The Scenario Setup Server Stability Management Security Management Mail Management Database Management Client Software Management End User Support
A Typical Environment
Three Offices
Southeast The Home Office
Mid Sized, easy to get to, excellent
net connection
Southwest A Production Facility
Mid Sized, easy to get to
Northeast R&D
Small Office Terrible Airport Access Heavy Ground Traffic Weather & Power Issues Expensive Travel Costs
Gabriella Davis
dinner table
Either choose an OS that your staff knows well, or send them to school All operating systems need to be patched and updated. Keeping up with
sensitive, but once the object is in the cache, it may not be.
BP403 Best Practices: IBM Lotus Domino for Linux -- Daniel Nashed
This becomes more and more important with each new version of the IBM Lotus Domino server Each server should have a replica of the "ADMIN4.NSF" from the administration server For more information
ID113 Maximize the Power of AdminP in IBM Lotus Domino -- Kathleen
Local Staff
Nothing is better than local staff
Before doing any kind of remote access work, compile a list of local contact
setup disk
Developer Management
Deployment Policies
These are a good thing, and you should have some. Questions to answer with your deployment policies:
Who decides when a database has been tested enough? Who will be called when a problem is reported?
Do you have a contact number for this developer?
If the indexer is busy doing other things in that database, these updates will take longer If these indexes are not up to date, authentication and access rights may not be granted to users
Security Management
them. Particularly, LDAP and SMTP can give away a lot of valuable information if improperly configured
Mail Management
This is probably why many of you came here in the first place.
document is needed
This is a "least cost" indicator to Domino's routing cost matrix
Put only servers that have excellent connectivity on the same "Named Network"
Connection Documents
Connection documents tell servers which are not on the same "Notes Named Network" how to find each other
They're also used for replication, but we'll get to that later
spam routing.
Even if you require password access for SMTP mail sending, password
If you disable SMTP Outbound on your servers, it will force the mail to route through your single gateway. In many cases this is a more secure method and provides greater traffic control on your network.
This method means you dont even need TCPIP as a protocol on your other Domino servers, because the routing all happens using Notes RPC protocols to the one server with SMTP capability.
The router task on the servers see that one Domino server has a connection to the "OurFakeName" domain so they route the messages to that server
That's the connection document's job
The server which is SMTP Mail Routing Enabled receives the mail in its INBOX and knows how to send SMTP mail directly, so it does.
mail file, considering it their own problem if they cause a problem. These people can take down your server.
If you want additional features, look for "Packaged" alternative mail templates which are properly supported.
openNTF.org has a very popular one, for example.
Domino
guesses from clogging your router Can make your site less attractive to spammers who get credit for "delivered" messages accepted by your server
Cons:
Makes it easy for spammers to test for valid names on your server
Consider using this if you have another tool that can detect multiple failed attempts from the same source and ban those sources at the firewall.
Not 100% accurate Read the lists website to understand their criteria for listing
some time
specific
My Recommendations
spamJam because users really like being able to interact with it Barracuda for simplicity and price, this device works very well ASSP Open source proxy, good but scale is uncertain
Signed Mail
Signed mail to Notes users
Your Public Key
Use "Files-Security-User Security" to get it or copy it from your Domino Directory
person document
If you create your own certificate authority, everyone will always have to decide accept it as trusted Excellent alternative for internal company use Buying Certificates or Certification Rights Free Certification Network
Once this is done, you can "sign" mail to be sent to users with Internet addresses
Mail Encryption
The Recipients Public Key is required The Public Key is used to create a one-way cipher that can only be read with the private key and only the user has the private key, it's in their Notes ID file (or other file if a non-Notes user)
Database Management
Deployment Policies
Limit Designer & Manager Access
On the fly changes cause most problems
Replication Topologies
Avoid "Everyone Replicates with Everyone" Map Network Choke Points
Administrators
Use all the power of the administrator tool, but subject to database and
document controls
Database Administrators
Manage databases, but not the server itself
In summary
It's no longer a question of whether or not something can be done, it's a question of which is the best way to do it and why. This presentation serves as a guideline, not a bible. This has been a high to medium high level look at the features you should be using, with pointers to where to find more detailed information.
Were all Lotus professionals here, please ask your questions so others can here the answers. You may also contact me directly if you like. Please fill out your evaluations The latest copy of this presentation will also be available at my website: http://www.thenorth.com
For those playing the home game, direct questions & comments to: Andrew Pollack andrewp@thenorth.com http://www.thenorth.com