Notes® and Domino® ID security

To prevent unauthorized access to servers and applications, secure Notes® and Domino® IDs.

These tasks apply only to Notes® users and Domino® servers.

Table 1. Tasks

Task

Use

Require a password for all user and server IDs.

Prevent an unauthorized user from using an illicitly obtained ID to authenticate with a server.

Enforce password quality testing for IDs.

Prevent unauthorized users from guessing passwords.

Assign multiple passwords to server and certifier IDs.

Require multiple users to enter passwords before gaining access to the ID file to prevent one person from controlling a server or certifier ID.

Compare a password with the password stored in the Domino® Directory and require users to change their passwords periodically.

Prevent an unauthorized user from using an illicitly obtained ID to authenticate with a server.

Compare a Domino® public key with the public key stored in the Domino® Directory.

Prevent an unauthorized user from using an illicitly obtained ID to authenticate with a server.

Use the ID vault

Easily recover from lost or damaged IDs and from forgotten passwords

Set up a security settings policy document.

Manage Notes® and Internet password properties, such as password synchronization and expiration settings, on an organizational level.

Lock the user ID after x minutes of inactivity.

Automatically log off servers to prevent an unauthorized user from using the workstation.

Use F5 to log off (basic Notes® configuration only).

Immediately log off servers to prevent an unauthorized user from using the workstation.

Save user IDs on a disk instead of on the workstation and keep disks in a safe place.

Physically protect user IDs.

Locate workstations in a secure area -- for example, a locked room.

Prevent unauthorized access to the ID files.

Install Smartcard readers on user workstations and have users log in to Notes® with Smartcards.

Physically protect user IDs and private Internet keys.