Lotus_SWAT 270005B4B4 758 Visits
IBM does a great job of putting together the documentation you need to support Lotus Connections problems. Though finding it all when you need it can sometimes be a challenge. Below is a list of the documents you can use to take that first step in diagnosing your issues and even using debug to take it one step further.
Test the reproducibility and try variations
Follow the general troubleshooting in the docs below. If that fails, implement the trace strings for each service and open a PMR:
IBM Collecting Data: MustGather for Lotus Connections 3.0 Files ...
Casey Toole has been doing some interesting work with a Traveler High Availability deployment. There has been a good bit of interest in her work so she wrote it up so others could use it as a cookbook for their approach to the same solution. Enjoy!
Several people have asked me about the Traveler deployment that I've done with a 10 server Traveler HA pool.
This is a large global customer, but we are only rolling Traveler out to the US users (about 40K devices).
The plan is to start with a roll out of about 10K users - one Traveler pool.
We will be using Lotus Mobile Connect 6.1.4 initially as sort of a pass through. When LMC 6.1.5 becomes available, we'll be upgrading over the top and activating the Single URL feature. This is a new feature of LMC that makes LMC "Traveler aware" and will do user assignment and routing from a single URL.
In the past versions of Traveler, users have to know their Traveler URL. The HA version, there is a single hostname (such as a load balancer or Virtual IP) that sits in front of each Traveler pool. The users would need to know their URL for that pool. If you only have up to 10K devices, that is not a problem, but in the case of this customer, we have 40K devices and thus 4 Traveler pools of 10 Traveler servers. That means 4 possible Traveler URLs and the users have to know which one. Now this is where LMC comes into the picture. The new version (eta is October 1ish) will handle routing. LMC learns where the existing users belong and will route them accordingly. As new users come to the LMC that are not yet assigned, LMC will route them to a pool that has capacity.
The beta for LMC 6.1.5 should be available this week, however it is only on Linux and with an Oracle back-end database. The Windows version will be available by the end of July and should support MSSQL. We'll be deploying that as a proof of concept when it becomes available.
My customer is using a MDM provider that will be in front of the LMC. The MDM provider will handle the authentication of the user against a Sun One Enterprise Directory. We have authentication configured to pass the tokens from the MDM provider to LMC and then SSO between LMC and Traveler. You export the LTPA tokens from the LMC and into Domino to get that working.
OK so that's a glimpse of the project so far. Here is a list of some of the things that I have learned:
For best performance on the database server, you should separate the
transactional logs from the data and system drives. We also dedicated a
logical disk to temporary files. Example
d:\ - data files
e:\ - temporary files
f:\ - transaction logs
g:\ - backup files
The Database server on the back end (DB2 or SQL) should have redundancy otherwise you have a single point of failure. If the database becomes unavailable for any reason, users will not have any service.
Also the database gets created with a full text index by default. They
should maintain the database as they would any other SQL or DB2
If you are going to use a MDM provider or LMC for clientless authentication, be sure to use Verisign 3rd party SSL certificates. Otherwise the mobile devices won't have the certificates on them.
Apple devices when used with a VPN will not receive notifications when they get new mail/calendar items. This is a limitation of the Apple protocols that we use. A clientless solution like LMC or MDM (such as Mobile Iron) will workaround this limitation.
Encrypted emails cannot be read from Traveler. You will need to use the Traveler Companion app for that. Users will get a message saying that their message is encrypted and they have to read it from Notes, iNotes or the Traveler Companion app.You should tune the servers like you would in the Traveler Performance cookbook. http://www-10.lotus.com/ldd/dominowiki.nsf/dx/Tuning_performance_of_the_server_LNT853
We did not do a whole lot of testing on SQL server, DB2 would be a better choice. My customer is using SQL.
The High Availability version of Traveler uses a shared relational database on the backend. Previous versions of Traveler had their own Derby database on each individual server. You can still run standalone Traveler servers in that fashion, but they aren't considered high availability.
When you set up a Traveler HA server, one of the steps is to create the database manually - basically a blank shell. Then you run a script that sets the schema and adds a FTI, etc..
Once that step is done, you then just connect each Traveler pool member to the same database backend.
If you are using SQL server as the backend, you need to apply an important update http://www-01.ibm.com/support/docview.wss?uid=swg24019529 which is available on Fix Central.
just added some more resources:Release Listing: http://www.lotus.com/ldd/dominowiki.nsf/dx/Lotus_Notes_Traveler_APAR_listing
Caution with HTC devices and Complex Passwords: http://www.ibm.com/support/docview.wss?uid=swg21597728
Skills Transfer Slides and Recorded Session: https://w3-connections.ibm.com/communities/service/html/communityview?communityUuid=6cdeca04-36b9-441b-a27a-a82c1eb05a4a
Having a SPNEGO configuration with your Connections account in Lotus Notes can make using and administering Connections widgets so much easier. But right now, setting it up to use is not a simple proposition. Unfortunately I learned the hard way that there are some issues that make using this configuration difficult/impossbible to implement until some of these issues are fixed in the future code. That is unless you know some tricks to get around those problems.
If WScript.Arguments.Named.Exists("elevated") = False Then
CreateObject("Shell.Application").ShellExecute "wscript.exe", """" & WScript.ScriptFullName & """ /elevated", "", "runas", 1
Set oShell = CreateObject("WScript.Shell")
oShell.CurrentDirectory = CreateObject("Scripting.FileSystemObject").GetParentFolderName(WScript.ScriptFullName)
Set oExec = oShell.Exec("notes.exe")
I was at a customer site recently. And because I'm on the SWAT team, let's say that the situation I dropped in to help was a little tense. And it just so happens that I have a daily build of the Notes Social Edition as my client.
Someone had come into the war room and was demanding some answers on an aspect of what the team was doing. During a period of intense "back and forth" that I was in the room for but not a part of; the mood suddenly changes. Suddenly the conversation becomes easier going and there is a lot more agreement. After he leaves, about half the room remarked "Did you notice he couldn't keep his eyes off Michael's computer!".
Apparently, he saw me moving through the new UI and was enthralled. I'll take the help where I can.
Probably the most talked about piece about the Social Edition is the plugin. It allows more integration of applications into the browser so that you can view things other than mail with your browser.
BTW, below is a screenshot of a beta build I took from Ed Brill's blog. The layout is cleaner and you get a lot more information without feeling cluttered. And they have made some really smart improvements to how to navigate around. I can see why one might be enthralled.
It's surprising to me that people are not aware of how important social media is to business communication. I mentioned how important social business was to the Lotus brand to a bunch of email guys. Their jaws just dropped.
I recently heard a podcast where Connections was called the flagship product for Lotus. I'm not sure what my take on that statement is but it is definitely a strong indicator of sentiment.
The SWAT team is dedicated to embracing this. They have been taking on the challenge of doing their business in a social fashion which in itself is a huge undertaking. The question is invariably the same as it was 4 years ago. How do you communicate with people that aren't used to communicating that way previously?
Social media is a new paradigm now in the way that email used to be a new paradigm. Back in the early 90's when email was starting to really take hold, it was a requirement to directly communicate with people. The key word there being "direct". Using tools like Connections is a great way to indirectly communicate with a greater audience. The goal is to reach people that weren't or are not immediately available. Social is about leveraging those next tier relationships where you get value that you didn't know was there. I think what you are going to start to see is more and more social integration until we reach a tipping point and the paradigm shifts.
Right now, there are a bunch of different players in this space and I believe it's still evolving. A fairly recent Gartner report shows Connections in a close race with Jive and Microsoft. But having seen the others, I have to think that Connections has hands down more to offer. IBM has the most impressive stack of social business applications and integration. When you are talking depth and breadth of a product, I'm still trying to wrap my head around how Connections isn't blowing everyone away. Perhaps that's just because I'm an IBM'er.
Our team gets called in to doing a wide range of tasks to help get through some pretty painful situations. As part of that, we have a pretty healthy production of tools to make it possible to do somethings that aren't currently available. Rob Mathews created an AdminP application that makes mass moving users much much simpler. Rather than trying to track down status and management features in different places, he put it all into one place. This is especially helpful if you have to move a great deal of users.
A lot of these tools are not available through normal channels. But if this is something that you think you might need, let me or your local SWAT team member know.