iNotes ID files in mail files no longer used for vaulted users

In this release, if an iNotes user has an ID file in the vault, the vaulted ID is always used for secure mail operations.

Regardless of the type of authentication that is configured (password, SAML, or TOTP), if the iNotes user has an ID in the vault, it is always used for secure mail operations. Previously, the ID file in the iNotes user mail files was used. The ID file still remains in the mail file for other applications that might need to access it.

iNotes user security preference changes

Because of this change, some iNotes user security preferences are no longer needed or provided in the iNotes browser client. The following security preferences are no longer provided for iNotes users in V12.0.1:
  • Synchronize Notes ID with Vault
  • Import Notes ID
  • Export Notes ID
The following security settings depend on the server configuration:
  • Change Notes ID Password This button is not provided if SAML or TOTP are enabled on the server.
  • Change Internet Password This button is not provided if SAML is enabled on the server.

Changes to ID vault configuration

Related to this change are also the following changes to ID vault configuration.

If you specify No in the Automatic ID downloads section of the ID vault tab in a Security Settings document, a new field, Allow trusted server ID downloads, is shown:
Allow trusted server ID downloads field set to Yes

The default value for the new field is No. By setting it to Yes, you can allow iNotes user IDs to be downloaded from the ID vault without any restrictions while allowing restriction to continue for Notes client user IDs. Enabling this setting is important if you have vaulted iNotes users to ensure their IDs can always be downloaded and cached from the server.

If you select Yes for Allow trusted server ID downloads, you must also specify which servers you trust to download the inotes IDs from. To specify the trusted servers:
  1. Open the vault database.
  2. Open the Configuration document.
  3. In the Non iDP authentication login field, specify the names of the ID vault servers that you trust for iNotes ID downloads.
    Note: This field was previously in a section of the document named TOTP authenticated login. The section name is changed to indicate that the field applies to iNotes users as well as TOTP.