Home
Administering HCL Traveler
Information on planning, installing, configuring, and administering HCL Traveler.
Administering HCL Traveler
The HCL Traveler server component functions as a Domino® server add-in task and responds to Domino server console commands. Topics in this section describe common administrative tasks for administering a HCL Traveler server.
Device security
There are a number of considerations to be aware of when securing different device types.
HCL Verse for Android device security
There are special considerations to be aware of when securing an HCL Verse for Android device.

Administering HCL Traveler
Information on planning, installing, configuring, and administering HCL Traveler.
- Planning for installation and configuration
  There are many installation and configuration considerations you should review before installing the HCL Traveler server.
- Installing the HCL Traveler server
  The following topics describe options for installing and uninstalling the server:
- Configuring HCL Traveler server
  The HCL Traveler configuration settings are part of the Domino® server document. The first time that the HCL Traveler server is started, it performs any necessary configurations. You might want to perform additional configurations beyond the basics. The following topics describe additional configuration options.
- Administering HCL Traveler
  The HCL Traveler server component functions as a Domino® server add-in task and responds to Domino server console commands. Topics in this section describe common administrative tasks for administering a HCL Traveler server.
  - Starting and stopping the server
    The HCL Traveler server and the HTTP server automatically start if you accept the default settings during installation. Use the commands in this topic to manually start or stop the HCL Traveler server.
  - Using the administration application
    The HCL Traveler administration database is contained in the LotusTraveler.nsf. This database contains the user interface that is used to view mobile user and device information, as well as set default device preference and security policies.
  - Assigning preferences and security settings to devices
    There are different ways to assign settings that determine how users work with the HCL Traveler server. You can use the built-in set of default device preferences and security settings that HCL Traveler provides, which is simpler. Or you can create a HCL Traveler policy settings document, which provides greater flexibility and control but is more complex to configure.
  - Device security
    There are a number of considerations to be aware of when securing different device types.
    - HCL Verse for Android device security
      There are special considerations to be aware of when securing an HCL Verse for Android device.
    - Apple device security
      There are special considerations to be aware of when securing the Apple Mail client or the HCL Verse® client.
    - BlackBerry Mobile device security
      There are special considerations to be aware of when securing a BlackBerry device.
    - Windows™ Phone, Windows™ Tablet, and Windows RT device security
      There are special considerations to be aware of when securing a Windows™ Phone, Windows Tablet, or Windows RT device.
  - Working with attachment security settings
    You can control how HCL Traveler clients manage file attachments and images.
  - Remote wipe
    If a mobile device is lost or stolen, an administrator can issue a remote wipe command to remove all sensitive data from the device. You can remove the HCL Traveler application and data from the device and, depending on the device, restore the device to the factory default settings.
  - Console commands
    This topic provides a detailed description of the HCL Traveler console commands.
  - travelerUtil commands
    The travelerutil is a command line tool located in the <domino data>\traveler\util directory. Enter travelerUtil help while running the tool to display the full list of options.
  - Delegation support
    HCL Traveler can allow delegates to access mail files owned by other users.
  - Controlling access to HCL Traveler
    When a user leaves the company or a device is lost or stolen, you must remove or restrict access to the HCL Traveler server. This section covers methods for removing and restricting access.
  - Deleting a user from HCL Traveler
    An administrator can remove old or invalid users from the HCL Traveler administrator UI and database. This should only be done for users where access is already restricted using a HCL Traveler or Domino® server access list, or who are no longer listed in the Domino directory.
  - Creating links to start the HCL Verse mobile app
    Create links that a user can click to start the HCL Verse mobile app from a web page or email.
  - Enabling syncing of read or unread changes
    Unread replication is enabled for each user automatically by the HCL Traveler server so that unread marks sync correctly with the device. This section explains how to activate unread replication manually using the Domino® Administrator client.
  - Repeated crash protection
    When certain Notes® documents are corrupted or contain non-standard content, they can cause the HCL Traveler server to repeatedly crash as it tries to process these documents. A repeating crash prevention feature exists to help minimize HCL Traveler server outage in these instances.
  - Maintaining the HCL Traveler database
    Whether running standalone HCL Traveler servers with the internal database or a pool of servers with an enterprise database, the database requires periodic maintenance to maintain optimal performance.
  - Mail address handling
  - Enforcing data sync limits
    Administrators can enforce synchronization data limits for all users using a setting in the Default Settings document.
  - Log types
    HCL Traveler has many different logs with a variety of purposes.
  - HTTP request handling and 409 responses
    HCL Traveler handles HTTP requests in specific ways that may result in 409 responses.
  - Confirming external recipients on Android devices
    For HCL Verse for Android clients, you can choose to prompt the user to confirm the sending of mail to external recipients. This provides an extra step to help prevent the unintentional sending of mail outside of your organization.
  - Adaptive Initial Sync
    Adaptive Initial Sync (AIS) helps ensure server availability in certain server bring up or recovery situations.
  - FCM messaging for HCL Verse for Android clients
    HCL Traveler server can use Firebase Cloud Messaging (FCM) for real time push notifications to keep your Mail, Calendar, Contact and To Do data on your HCL Verse for Android clients up to date. Google has deprecated GCM and replaced it with FCM.
  - How synced data moves through the system
  - How HCL Traveler processes attachments
    There are several issues to be aware of in how HCL Traveler processes attachments.
  - How HCL Traveler processes SmartForward/SmartReply requests
    A SmartForward/SmartReply (SFSR) request is an email that is a forward or reply of a previously received email that does not include the body or attachments from the original email which is being forwarded or replied to. Instead, a SFSR contains just the forward/reply body text and any additional attachments, plus an identifier of the original email.

HCL Verse for Android device security

There are special considerations to be aware of when securing an HCL Verse for Android device.

Authentication

HCL Traveler relies on the Domino® infrastructure (HTTP and Admin Client) to authenticate the user. The authentication credentials can be one of the user's allowed Domino® name formats, along with the user's HTTP password, or it can be something defined with the Directory Assistance database. All devices use HTTP Basic Authentication, so HTTPS is recommended for security reasons unless using a VPN or a secured network.

Account information and passwords

All credentials are encrypted using AES 256-bit encryption and stored in application preferences storage. If Disable local password storage is checked, the password is not stored and the user is prompted for the password when needed.

The Notes ID password used for reading Domino encrypted mail, when entered, is encrypted and persistently stored. If the password is changed, the stored password is rejected on the next use and the user is prompted to enter the new password.

Data storage

All content synchronized from the HCL Traveler server and content created via the HCL Verse for Android application is encrypted and securely stored using AES 256-bit encryption.

If the Administrator allows HCL Verse Contacts to be exported, the exported Contact data is stored using the Android OS Contacts Contract and is accessible to the contacts application through those APIs.