Domino® server and Notes® user IDs

Domino® uses ID files to identify users and to control access to servers. Every Domino® server, Notes® certifier, and Notes® user must have an ID.

When you register users and servers, Domino® automatically creates their IDs. An ID file contains:

  • The owner's name. A user ID file may also contain one alternate name. A certifier ID may contain multiple alternate names.
  • A permanent license number. This number indicates that the owner is legal and specifies whether the owner has a North American or International license to run Domino® or Notes®.
  • At least one Notes® certificate from a certifier ID. A Notes® certificate is a digital signature added to a user ID or server ID. This signature, which is generated from the private key of a certifier ID, verifies that the name of the owner of the ID is correctly associated with a specific public key.
  • A private key. Notes® uses the private key to sign messages sent by the owner of the private key, to decrypt messages sent to its owner, and, if the ID belongs to a certifier, to sign certificates.
  • (Optional Notes® client only) Internet certificates. An Internet certificate is used to secure SSL connections and encrypt and sign S/MIME mail messages. An Internet certificate is issued by a Certification Authority (CA) and verifies the identity of the user. The user's private key associated with an Internet certificate is stored with that certificate.
  • (Optional) One or more secret encryption keys, created and distributed by users to allow other users to encrypt and decrypt fields in a document.
    Note: If a user is in the process of requesting a new private key or a name change, the pending information is also stored in the ID file. If a Notes® private key is changed, then the obsolete information is also stored in the ID file for backwards compatibility. For example, you would need the obsolete information to read old encrypted email.